CVE-2012-5940

The WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza, when SSL is not enabled, allows remote attackers to discover credentials by sniffing the network during the authentication process.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 41%
VendorProductVersion
ibmnetezza
6.0.5
ibmnetezza
6.0.8
ibmnetezza
7.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21624568
https://exchange.xforce.ibmcloud.com/vulnerabilities/80535
http://www-01.ibm.com/support/docview.wss?uid=swg21624568
https://exchange.xforce.ibmcloud.com/vulnerabilities/80535