CVE-2016-0297

Summary

IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) could allow a remote attacker to obtain sensitive information due to a missing HTTP Strict-Transport-Security Header through man in the middle techniques.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationBigFix Platform9.0affected
IBM CorporationBigFix Platform9.1affected
IBM CorporationBigFix Platform9.2affected
IBM CorporationBigFix Platform9.5affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References