Description
IBM DataPower Gateway 7.6.0.0 through 7.6.0.10, 7.5.2.0 through 7.5.2.17, 7.5.1.0 through 7.5.1.17, 7.5.0.0 through 7.5.0.18, and 7.7.0.0 through 7.7.1.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 144891.
CVSS breakdown
CVSS 3.0
Availability
None
Attack Complexity
High
Attack Vector
Network
Confidentiality
High
Integrity
None
Privileges Required
None
Scope
Unchanged
User Interaction
None
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / DataPower Gateway7.6.0.0 – 7.6.0.0
- ibm / DataPower Gateway7.6.0.10 – 7.6.0.10
- ibm / DataPower Gateway7.5.2.0 – 7.5.2.0
- ibm / DataPower Gateway7.5.2.17 – 7.5.2.17
- ibm / DataPower Gateway7.5.1.0 – 7.5.1.0
- ibm / DataPower Gateway7.5.1.17 – 7.5.1.17
- ibm / DataPower Gateway7.5.0.0 – 7.5.0.0
- ibm / DataPower Gateway7.7.0.0 – 7.7.0.0
- ibm / DataPower Gateway7.7.1.3 – 7.7.1.3
- ibm / DataPower Gateway7.5.0.18 – 7.5.0.18