CVE-2016-6098

Published: Jun 8, 2017Modified: May 13, 2026

8.1

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Exploitability: 2.8 / Impact: 5.2

Source: NVD

Description

IBM Tivoli Key Lifecycle Manager 2.0.1, 2.5, and 2.6 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Affected (20)

Products: Ibm: Security Key Lifecycle Manager, Tivoli Key Lifecycle Manager

Ibm

2 products

Security Key Lifecycle Manager

Tivoli Key Lifecycle Manager

Configuration A

20 vulnerable

Vulnerable Software	Affected Versions
Ibm Security Key Lifecycle Manager	Version 2.5.0.0
Ibm Security Key Lifecycle Manager	Version 2.5.0.1
Ibm Security Key Lifecycle Manager	Version 2.5.0.2
Ibm Security Key Lifecycle Manager	Version 2.5.0.3
Ibm Security Key Lifecycle Manager	Version 2.5.0.4
Ibm Security Key Lifecycle Manager	Version 2.5.0.5
Ibm Security Key Lifecycle Manager	Version 2.5.0.6
Ibm Security Key Lifecycle Manager	Version 2.5.0.7
Ibm Security Key Lifecycle Manager	Version 2.6.0.0
Ibm Security Key Lifecycle Manager	Version 2.6.0.1
Ibm Security Key Lifecycle Manager	Version 2.6.0.2
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.1
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.2
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.3
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.4
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.5
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.6
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.7
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1.8
Ibm Tivoli Key Lifecycle Manager	Version 2.0.1