CVE-2016-6098

Summary

IBM Tivoli Key Lifecycle Manager 2.0.1, 2.5, and 2.6 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Affected Software

VendorProductVersion RangeStatus
IBMSecurity Key Lifecycle Manager2.5affected
IBMSecurity Key Lifecycle Manager2.0.1affected
IBMSecurity Key Lifecycle Manager2.6affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References