TROYANOSYVIRUS
Back to CVEs

CVE-2016-6087

CRITICAL
9.8

Description

IBM Domino 8.5 and 9.0 could allow an attacker to steal credentials using multiple sessions and large amounts of data using Domino TLS Key Exchange validation. IBM X-Force ID: 117918.

CVE Details

CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published6/7/2017
Last Modified4/20/2025
Sourcenvd
Honeypot Sightings0

Affected Products

ibm:domino

Weaknesses (CWE)

CWE-20

References

http://www.ibm.com/support/docview.wss?uid=swg22002808(psirt@us.ibm.com)
http://www.securityfocus.com/bid/98794(psirt@us.ibm.com)
http://www.securitytracker.com/id/1038606(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/117918(psirt@us.ibm.com)
http://www.ibm.com/support/docview.wss?uid=swg22002808(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/98794(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1038606(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/117918(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.