Vulnerability Name:

CVE-2016-0201 (CCN-109310)

Assigned:2015-12-08
Published:2016-01-15
Updated:2016-12-07
Summary:GSKit in IBM Security Network Protection 5.3.1 before 5.3.1.7 and 5.3.2 allows remote attackers to discover credentials by triggering an MD5 collision.
CVSS v3 Severity:5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.2 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.4 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2016-0201

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21974242

Source: CCN
Type: IBM Security Bulletin 1974785
A vulnerability in the GSKit component of Informix Dynamic Server (IDS) (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974872
A vulnerability in the GSKit component of Client Software Development Kit (CSDK) (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin T1023281
GSKit and Hash Selection Vulnerability (CVE-2016-0201 )

Source: CCN
Type: IBM Security Bulletin T1023296
Vulnerability in GSKit affects IBM Tivoli Directory Server and IBM Security Directory Server for AIX/VIOS (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1972246
Vulnerabilities in the GSKit component of Transformation Extender (CVE-2016-0201, CVE-2015-7421, CVE-2015-7420)

Source: CCN
Type: IBM Security Bulletin 1974240
A vulnerability in the GSKit component of IBM Security Network Intrusion Prevention System (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974242 (Security Network Protection)
A vulnerability in the GSKit component of IBM Security Network Protection (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974270
A vulnerability in the GSKit component of IBM Rational ClearCase (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974333
A vulnerability in the GSKit component of IBM Content Collector for SAP Applications (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974389
A security vulnerability has been identified in the GSKit component of IBM Security Access Manager for Web (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974407
A vulnerability in the GSKit component of IBM Sterling Connect:Direct for Microsoft Windows (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974452
A vulnerability in the GSKit component of IBM Security Access Manager for Mobile (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974466 (WebSphere)
A vulnerability in the GSKit component of IBM WebSphere MQ (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974507
Vulnerabilities in the GSKit component of IBM HTTP Server (CVE-2016-0201 and CVE-2015-7420)

Source: CCN
Type: IBM Security Bulletin 1974589 (Communications Server for Data Center Deployment)
A vulnerability in the GSKit component of Communications Server for Data Center Deployment, Communications Server for AIX, Communications Server for Linux, Communications Server for Linux on System z, Communications Server for Windows

Source: CCN
Type: IBM Security Bulletin 1974598
A vulnerability in the GSKit component of IBM MQ Appliance (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974621 (Mobile Connect )
A vulnerability in the GSKit component of IBM Mobile Connect (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974683 (Tivoli Continuous Data Protection for Files)
A vulnerability in the GSKit component of IBM Tivoli Continuous Data Protection for Files (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974685 (Spectrum Protect for Workstations)
A vulnerability in the GSKit component of IBM Tivoli Storage Manager Fastback for Workstations (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974698
A vulnerability in the GSKit component of Content Manager OnDemand for Multiplatforms (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974700
A vulnerability in the GSKit component of Content Manager Enterprise Edition (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974810
A vulnerability in the GSKit component of IBM Cognos Metrics Manager (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974875
A vulnerability in the GSKit component of IBM MessageSight (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974884
A vulnerability in the GSKit component of IBM Sterling Connect:Direct for UNIX (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974886
A vulnerability in the GSKit component of Rational Developer for System z (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974898
Multiple vulnerabilities affect AppScan Enterprise

Source: CCN
Type: IBM Security Bulletin 1974947
A vulnerability in the GSKit component of IBM Personal Communications (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974969 (DataPower Gateways)
A vulnerability in the GSKit component of IBM DataPower Gateways (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1974980
A vulnerability in the GSKit component of IBM Security SiteProtector System (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975034
Vulnerabilities in the GSKit component of IBM Transformation Extender Hypervisor Edition for AIX (CVE-2016-0201, CVE-2015-7421, CVE-2015-7420)

Source: CCN
Type: IBM Security Bulletin 1975035
Vulnerabilities in the GSKit component of IBM Transformation Extender Hypervisor Edition (CVE-2016-0201, CVE-2015-7421, CVE-2015-7420)

Source: CCN
Type: IBM Security Bulletin 1975044
A vulnerability in the GSKit component of IBM Cognos Business Intelligence Server (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975045
A vulnerability in the GSKit component of Cognos Analytics (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975127
A vulnerability in the GSKit component of IBM Rational RequisitePro (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975249
A vulnerability in the GSKit component of IBM Cognos Controller (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975305
A vulnerability in the GSKit component of Tivoli Network Manager IP Edition (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975404
A vulnerability has been addressed in the GSKit component of IBM Security Directory Server (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975420
A vulnerability in the GSKit component of IBM Rational ClearQuest (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975525
A vulnerability in the GSKit component of Tivoli Netcool/OMNIbus (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1975840
A vulnerability in the GSKit component of IBM Tivoli Storage FlashCopy Manager for UNIX and VMware (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1976125 (Tivoli Monitoring V6)
A vulnerability in the GSKit component of IBM Tivoli Monitoring (CVE-2016-0201)

Source: CCN
Type: IBM Security Bulletin 1977787 (DB2 for Linux, UNIX and Windows)
Vulnerabilities in the GSKit component of IBM DB2 LUW (CVE-2016-0201, CVE-2015-7420 & CVE-2015-7421)

Source: CCN
Type: IBM Security Bulletin 1978392 (Data Server Client Packages)
Vulnerabilities in GSKit affect IBM Data Server Client and Driver packages(CVE-2016-0201, CVE-2015-7420 and CVE-2015-7421)

Source: CCN
Type: IBM Security Bulletin 1982312 (BigInsights)
Security vulnerabilities have been identified in GSKIT and/or GSKit Crypto and Fork that are integrated with IBM DB2 and shipped with IBM InfoSphere BigInsights. (CVE-2015-7420, CVE-2015-7421, CVE-2016-0201)

Source: BID
Type: UNKNOWN
80883

Source: CCN
Type: BID-80883
IBM Security Network Protection and Mobile Connect Information Disclosure Vulnerability

Source: SECTRACK
Type: UNKNOWN
1034696

Source: XF
Type: UNKNOWN
ibm-gskit-cve20160201-info-disc(109310)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:ibm:security_network_protection_firmware:5.3.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_network_protection_firmware:5.3.2:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ibm:websphere_mq:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_mq:7.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_mq:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_mq:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:mobile_connect:6.1.5.2:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_network_protection_firmware:5.3.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_network_protection_firmware:5.3.2:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:rational_clearquest:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:http_server:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:http_server:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_appscan:8.7.0.0:-:enterprise:*:*:*:*:*
  • OR cpe:/a:ibm:content_manager_ondemand_for_multiplatforms:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:content_manager_ondemand_for_multiplatforms:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer:9.0:*:*:*:system_z:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/omnibus:7.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:7.0:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_directory_server:6.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_directory_server:6.3.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_appscan:8.8:*:*:*:enterprise:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0:*:mobile:*:*:*:*:*
  • OR cpe:/a:ibm:security_siteprotector_system:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:10.5:*:*:*:*:linux:*:*
  • OR cpe:/a:ibm:db2:10.5:*:*:*:*:unix:*:*
  • OR cpe:/a:ibm:db2:10.5:*:*:*:*:windows:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.1:*:mobile:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.2:*:mobile:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.3:*:mobile:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.4:*:mobile:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.2:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_connect:direct:4.7:*:*:*:microsoft_windows:*:*:*
  • OR cpe:/a:ibm:sterling_connect:direct:4.2:*:*:*:unix:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_appscan:9.0:*:*:*:enterprise:*:*:*
  • OR cpe:/a:ibm:security_network_intrusion_prevention_system:4.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_network_intrusion_prevention_system:4.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:datapower_gateway:6.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_appscan:9.0.1::~~enterprise~~~:*:*:*:*:*
  • OR cpe:/a:ibm:db2:10.1:*:*:*:*:linux:*:*
  • OR cpe:/a:ibm:db2:10.1:*:*:*:*:unix:*:*
  • OR cpe:/a:ibm:db2:10.1:*:*:*:*:windows:*:*
  • OR cpe:/a:ibm:tivoli_network_manager:3.9:*:ip:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.5:*:mobile:*:*:*:*:*
  • OR cpe:/a:ibm:db2:9.7:*:*:*:*:linux:*:*
  • OR cpe:/a:ibm:db2:9.7:*:*:*:*:unix:*:*
  • OR cpe:/a:ibm:db2:9.7:*:*:*:*:windows:*:*
  • OR cpe:/a:ibm:db2:9.8:*:*:*:linux:*:*:*
  • OR cpe:/a:ibm:db2:9.8:*:*:*:unix:*:*:*
  • OR cpe:/a:ibm:db2:9.8:*:*:*:windows:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.4:*:web:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.0.5:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_network_manager:4.1:*:ip:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_network_manager:4.1.1:*:ip:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:datapower_gateway:7.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:content_manager:8.4.3::~~enterprise~~~:*:*:*:*:*
  • OR cpe:/a:ibm:content_manager:8.5::~~~enterprise~~:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/omnibus:8.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.0.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.0.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:content_collector:3.0.0:*:*:*:sap_applications:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:content_collector:4.0.0:*:*:*:sap_applications:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_siteprotector_system:3.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:messagesight:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:data_server_client_packages:9.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:data_server_client_packages:10.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:data_server_client_packages:10.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.6:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.1:*:mobile:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.0.1.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.1:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:datapower_gateway:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.17:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.1.2:*:mobile:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_controller:10.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_manager:4.2.0:*:*:*:*:openstack:*:*
  • OR cpe:/a:ibm:content_collector:3.0.0.2:*:*:*:sap_applications:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_directory_server:6.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_appscan:9.0.2:-:enterprise:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.1.2:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.0.1.4:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.1.3:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:biginsights:4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.18:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_manager:4.3.0:*:*:*:*:openstack:*:*
  • OR cpe:/a:ibm:datapower_gateway:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect:6.3:*:*:*:workstations:*:*:*
  • OR cpe:/a:ibm:spectrum_protect:7.1:*:*:*:workstations:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_appscan:9.0.3:-:enterprise:*:*:*:*:*
  • OR cpe:/a:ibm:personal_communications:6.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:content_collector:4.0.0.1:*:*:*:sap_applications:*:*:*
  • OR cpe:/a:ibm:mq_appliance:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.3.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:8.4.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_analytics:11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_developer_for_system_z:9.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:9.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.17:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.3.17:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_requisitepro:7.1.4.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.19:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.17:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.10:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:8.0.1.3:*:mobile:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:9.0:*:mobile:*:*:*:*:*
  • OR cpe:/o:ibm:security_access_manager:9.0:*:web:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_network_manager:4.2:*:ip:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ibm security network protection firmware 5.3.1
    ibm security network protection firmware 5.3.2
    ibm websphere mq 7.1
    ibm websphere mq 7.5
    ibm websphere mq 7.0.1
    ibm websphere mq 8.0
    ibm mobile connect 6.1.5.2
    ibm security network protection firmware 5.3.1
    ibm security network protection firmware 5.3.2
    ibm rational clearquest 8.0
    ibm rational clearquest 8.0.0.1
    ibm rational clearquest 8.0.0.2
    ibm rational clearquest 8.0.0.3
    ibm rational clearquest 8.0.0.4
    ibm http server 8.0
    ibm http server 8.5
    ibm rational clearquest 8.0.0.5
    ibm security appscan 8.7.0.0 -
    ibm content manager ondemand for multiplatforms 8.5
    ibm content manager ondemand for multiplatforms 9.0
    ibm rational developer 9.0
    ibm rational clearcase 8.0.0.3
    ibm rational clearcase 8.0.0.4
    ibm rational clearcase 8.0.0.5
    ibm rational clearcase 8.0.0.6
    ibm rational clearcase 8.0.0.7
    ibm rational clearcase 8.0.1
    ibm rational clearquest 8.0.0.6
    ibm rational clearquest 8.0.0.7
    ibm rational clearquest 8.0.1
    ibm tivoli netcool/omnibus 7.4.0
    ibm rational requisitepro 7.1.3
    ibm rational requisitepro 7.1.3.1
    ibm rational requisitepro 7.1.3.2
    ibm rational requisitepro 7.1.3.3
    ibm rational requisitepro 7.1.3.4
    ibm rational requisitepro 7.1.3.5
    ibm rational requisitepro 7.1.3.6
    ibm rational requisitepro 7.1.3.7
    ibm rational requisitepro 7.1.4
    ibm security access manager 7.0
    ibm rational clearcase 7.1.2.9
    ibm rational clearcase 7.1.2.10
    ibm rational clearcase 7.1.2.11
    ibm rational clearcase 7.1.2.12
    ibm rational clearcase 8.0
    ibm rational clearcase 8.0.0.1
    ibm rational clearcase 8.0.0.2
    ibm rational clearcase 8.0.0.8
    ibm rational clearcase 8.0.1.1
    ibm rational clearquest 8.0.0.8
    ibm rational clearquest 8.0.1.1
    ibm security directory server 6.3
    ibm security directory server 6.3.1
    ibm security access manager 8.0
    ibm rational clearcase 8.0.1.2
    ibm rational clearcase 8.0.0.9
    ibm security appscan 8.8
    ibm security access manager 8.0
    ibm security siteprotector system 3.0
    ibm rational clearquest 8.0.0.9
    ibm rational clearquest 8.0.0.10
    ibm rational clearquest 8.0.0.11
    ibm rational clearquest 8.0.1.2
    ibm rational clearquest 8.0.1.3
    ibm rational clearquest 8.0.1.4
    ibm db2 10.5
    ibm db2 10.5
    ibm db2 10.5
    ibm rational requisitepro 7.1.3.8
    ibm rational requisitepro 7.1.3.9
    ibm rational requisitepro 7.1.3.10
    ibm rational requisitepro 7.1.4.1
    ibm rational requisitepro 7.1.4.2
    ibm rational requisitepro 7.1.4.3
    ibm security access manager 8.0.0.1
    ibm security access manager 8.0.0.2
    ibm security access manager 8.0.0.3
    ibm security access manager 8.0.0.4
    ibm rational clearcase 7.1.2.13
    ibm rational clearcase 8.0.0.10
    ibm rational clearcase 8.0.1.3
    ibm security access manager 8.0.0.2
    ibm sterling connect:direct 4.7
    ibm sterling connect:direct 4.2
    ibm rational clearcase 7.1.2.14
    ibm rational clearcase 8.0.0.11
    ibm rational clearcase 8.0.1.4
    ibm security appscan 9.0
    ibm security network intrusion prevention system 4.6.1
    ibm security network intrusion prevention system 4.6.2
    ibm datapower gateway 6.0.1
    ibm security appscan 9.0.1
    ibm db2 10.1
    ibm db2 10.1
    ibm db2 10.1
    ibm tivoli network manager 3.9
    ibm security access manager 8.0.0.5
    ibm db2 9.7
    ibm db2 9.7
    ibm db2 9.7
    ibm db2 9.8
    ibm db2 9.8
    ibm db2 9.8
    ibm security access manager 8.0.0.4
    ibm security access manager 8.0.0.5
    ibm tivoli network manager 4.1
    ibm tivoli network manager 4.1.1
    ibm rational clearquest 8.0.0.12
    ibm rational clearquest 8.0.1.5
    ibm datapower gateway 7.0.0
    ibm rational clearcase 8.0.0.12
    ibm rational clearcase 8.0.1.5
    ibm content manager 8.4.3
    ibm content manager 8.5
    ibm tivoli netcool/omnibus 8.1.0
    ibm rational developer for system z 9.0.1.1
    ibm rational developer for system z 9.0.1.2
    ibm rational developer for system z 9.1
    ibm personal communications 6.0.1
    ibm personal communications 6.0.2
    ibm personal communications 6.0.3
    ibm personal communications 6.0.4
    ibm personal communications 6.0.5
    ibm personal communications 6.0.6
    ibm personal communications 6.0.7
    ibm personal communications 6.0.8
    ibm personal communications 6.0.9
    ibm personal communications 6.0.10
    ibm personal communications 6.0.11
    ibm rational developer for system z 9.0.1
    ibm content collector 3.0.0
    ibm rational requisitepro 7.1.3.11
    ibm rational requisitepro 7.1.3.12
    ibm rational requisitepro 7.1.4.4
    ibm rational requisitepro 7.1.4.5
    ibm content collector 4.0.0
    ibm rational clearcase 7.1.2.15
    ibm cognos business intelligence 10.2.2
    ibm security siteprotector system 3.1.1
    ibm messagesight 1.2
    ibm rational clearcase 7.1.2.16
    ibm rational clearcase 8.0.0.13
    ibm rational clearcase 8.0.1.6
    ibm rational clearquest 8.0.0.13
    ibm rational clearquest 8.0.1.6
    ibm data server client packages 9.7
    ibm data server client packages 10.1
    ibm data server client packages 10.5
    ibm rational requisitepro 7.1.3.13
    ibm rational requisitepro 7.1.4.6
    ibm security access manager 8.0.1
    ibm rational developer for system z 9.0.1.3
    ibm security access manager 8.0.1
    ibm datapower gateway 7.1
    ibm rational requisitepro 7.1.3.14
    ibm rational requisitepro 7.1.4.7
    ibm rational developer for system z 9.1.1
    ibm rational clearcase 7.1.2.17
    ibm rational clearcase 8.0.0.14
    ibm rational clearcase 8.0.1.7
    ibm tivoli monitoring 6.2.3
    ibm tivoli monitoring 6.3.0
    ibm security access manager 8.0.1.2
    ibm cognos controller 10.2.1
    ibm rational developer for system z 9.0.0.1
    ibm rational developer for system z 9.1.1.1
    ibm rational clearquest 8.0.0.14
    ibm rational clearquest 8.0.1.7
    ibm cloud manager 4.2.0
    ibm content collector 3.0.0.2
    ibm personal communications 6.0.12
    ibm personal communications 6.0.13
    ibm personal communications 6.0.14
    ibm security directory server 6.4
    ibm security appscan 9.0.2 -
    ibm security access manager 8.0.1.2
    ibm rational developer for system z 9.0.1.4
    ibm security access manager 8.0.1.3
    ibm rational clearquest 8.0.0.15
    ibm rational clearquest 8.0.1.8
    ibm biginsights 4.0.0
    ibm rational clearcase 7.1.2.18
    ibm rational clearcase 8.0.0.15
    ibm rational clearcase 8.0.1.8
    ibm rational requisitepro 7.1.3.15
    ibm rational requisitepro 7.1.4.8
    ibm personal communications 6.0.15
    ibm cloud manager 4.3.0
    ibm datapower gateway 7.2
    ibm spectrum protect 6.3
    ibm spectrum protect 7.1
    ibm rational clearquest 8.0.0.16
    ibm rational clearquest 8.0.1.9
    ibm rational clearcase 8.0.0.16
    ibm rational clearcase 8.0.1.9
    ibm rational developer for system z 9.1.1.2
    ibm rational developer for system z 9.5
    ibm security appscan 9.0.3 -
    ibm personal communications 6.0.16
    ibm content collector 4.0.0.1
    ibm mq appliance 8.0
    ibm transformation extender 8.3.0.0
    ibm transformation extender 8.3.0.1
    ibm transformation extender 8.3.0.2
    ibm transformation extender 8.3.0.3
    ibm transformation extender 8.3.0.4
    ibm transformation extender 8.3.0.5
    ibm transformation extender 8.3.0.6
    ibm transformation extender 8.4.0.0
    ibm transformation extender 8.4.0.1
    ibm transformation extender 8.4.0.2
    ibm transformation extender 8.4.0.3
    ibm transformation extender 8.4.0.4
    ibm transformation extender 8.4.0.5
    ibm transformation extender 8.4.1.0
    ibm transformation extender 8.4.1.1
    ibm transformation extender 8.4.1.2
    ibm transformation extender 8.4.1.3
    ibm cognos analytics 11
    ibm rational developer for system z 9.5.1
    ibm transformation extender 9.0.0.0
    ibm rational clearquest 8.0.0.17
    ibm rational clearquest 8.0.1.10
    ibm rational requisitepro 7.1.3.16
    ibm rational requisitepro 7.1.3.17
    ibm rational requisitepro 7.1.4.9
    ibm rational requisitepro 7.1.4.10
    ibm rational clearcase 7.1.2.19
    ibm rational clearcase 8.0.0.17
    ibm rational clearcase 8.0.1.10
    ibm security access manager 8.0.1.3
    ibm security access manager 9.0
    ibm security access manager 9.0
    ibm tivoli network manager 4.2