Weak Cryptographic Keys in IBM WebSphere Application Server Traditional Container

Weak Cryptographic Keys in IBM WebSphere Application Server Traditional Container

CVE-2022-43917 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

IBM WebSphere Application Server 8.5 and 9.0 traditional container uses weaker than expected cryptographic keys that could allow an attacker to decrypt sensitive information. This affects only the containerized version of WebSphere Application Server traditional. IBM X-Force ID: 241045.

Learn more about our Cis Benchmark Audit For Ibm I.