Vulnerability in Ibm Global_security_kit
CVE-2012-2203
IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, uses the PKCS #12 file format for certificate objects without enforcing file integrity, which…
EPSS: 0.010 (76.9th percentile) — read the EPSS interpretation.
Affected products
- Ibm Global_security_kit — versions 7.0.4.28, 7.0.4.29
- Ibm Rational_directory_server
- Ibm Tivoli_directory_server
- N/a — versions n/a
Weakness classification (CWE)
References
- rds-gskit-pkcs-spoofing(77280) (vdb-entry, x_refsource_XF)
- 51279 (x_refsource_SECUNIA, third-party-advisory)
- IV31975 (vendor-advisory, x_refsource_AIXAPAR)
- 54743 (vdb-entry, x_refsource_BID)
- IV31973 (vendor-advisory, x_refsource_AIXAPAR)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)