VYPR
Unrated severityNVD Advisory· Published Jun 28, 2015· Updated Jun 17, 2026

CVE-2015-0118

CVE-2015-0118

Description

IBM WebSphere Message Broker Toolkit 7 before 7007 IF2 and 8 before 8005 IF1 and Integration Toolkit 9 before 9003 IF1 are distributed with MQ client JAR files that support only weak TLS ciphers, which might make it easier for remote attackers to obtain sensitive information by sniffing the network during a connection to an Integration Bus node.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

18
  • cpe:2.3:a:ibm:integration_bus:9.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ibm:integration_bus:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:integration_bus:9.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:integration_bus:9.0.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:integration_bus:9.0.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:websphere_message_broker:7.0.:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:ibm:websphere_message_broker:7.0.:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:7.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:7.0.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:7.0.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:7.0.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:7.0.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:8.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:8.0.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:8.0.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:8.0.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_message_broker:8.0.0.5:*:*:*:*:*:*:*
    • (no CPE)range: <7007 IF2; <8005 IF1; <9003 IF1
  • Range: <9003 IF1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.