Vulnerability Bulletins

IBM Security Bulletin: Vulnerability in Diffie-Hellman ciphers affects IBM Security Access Manager for Web and IBM Tivoli Access Manager for e-business (CVE-2015-4000)

System information
   
Affected software IBM

Description
The Logjam Attack on TLS connections using the Diffie-Hellman (DH) key exchange protocol affects IBM Security Access Manager for Web and IBM Tivoli Access Manager for e-business. CVE(s): CVE-2015-4000 Affected product(s) and affected version(s): IBM Tivoli Access Manager for e-business versions 6.0, 6.1, 6.1.1 IBM Security Access Manager for Web version 7.0 software IBM Security Access Manager for Web version 7.0 appliance, all firmware versions IBM Security Access Manager for Web

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerability_in_diffie_hellman_ciphers_affects_ibm_security_access_manager_for_web_and_ibm_tivoli_access_manager_for_e_business_cve_2015_4000?lang=en_us

Standar resources
Property Value
CVE CVE-2015-4000 ,CVE-2015-2808 ,CVE-2015-1916 ,CVE-2015-0204 and CVE-2015-0138.

Version history
Version Comments Date
1.0 Advisory issued 2015-07-29
Ministerio de Defensa
CNI
CCN
CCN-CERT