CVE-2016-0201

EUVD-2016-0236
GSKit in IBM Security Network Protection 5.3.1 before 5.3.1.7 and 5.3.2 allows remote attackers to discover credentials by triggering an MD5 collision.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
Affected Products (NVD)
VendorProductVersion
ibmsecurity_network_protection_firmware
5.3.1
ibmsecurity_network_protection_firmware
5.3.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21974242
http://www.securityfocus.com/bid/80883
http://www.securitytracker.com/id/1034696
http://www-01.ibm.com/support/docview.wss?uid=swg21974242
http://www.securityfocus.com/bid/80883
http://www.securitytracker.com/id/1034696