Unrated severityNVD Advisory· Published Jun 28, 2015· Updated May 6, 2026

CVE-2015-1972

Description

IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote attackers to obtain sensitive error-log information via a crafted POST request.

Affected products

IBM/Tivoli Directory Server6 versions
cpe:2.3:a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:ibm:tivoli_directory_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_directory_server:6.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_directory_server:6.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_directory_server:6.3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_directory_server:6.3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_directory_server:6.4.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
www.securityfocus.com/bid/75441nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1032734nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000