Improper input validation in Ibm Global_security_kit
CVE-2012-2191
IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a protection mechanism against the Vaudena…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.047 (89.6th percentile) — read the EPSS interpretation.
Affected products
- Ibm Global_security_kit — versions 7.0.4.28, 7.0.4.29
- Ibm Rational_directory_server
- Ibm Tivoli_directory_server
- N/a — versions n/a
Weakness classification (CWE)
References
- IV31980 (vendor-advisory, x_refsource_AIXAPAR)
- 51279 (x_refsource_SECUNIA, third-party-advisory)
- rds-recordlayer-dos(75996) (vdb-entry, x_refsource_XF)
- 54743 (vdb-entry, x_refsource_BID)
- IV31981 (vendor-advisory, x_refsource_AIXAPAR)
- psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)