CVE-2017-1395 : What You Need to Know

A vulnerability in IBM Security Identity Governance and Intelligence Virtual Appliance versions 5.2 through 5.2.3.2 could allow a remote attacker to obtain sensitive information through inadequate HTTP Strict Transport Security.

Understanding CVE-2017-1395

This CVE involves a security vulnerability in IBM Security Identity Governance and Intelligence Virtual Appliance versions 5.2 through 5.2.3.2.

What is CVE-2017-1395?

The vulnerability is due to the improper enabling of HTTP Strict Transport Security, potentially allowing a remote attacker to acquire sensitive information.
The attacker could exploit this by using man-in-the-middle techniques.

The Impact of CVE-2017-1395

CVSS Score: 5.9 (Medium)
Attack Vector: Network
Confidentiality Impact: High
Exploit Code Maturity: Unproven
Vector String: CVSS:3.0/A:N/AC:H/AV:N/C:H/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O

Technical Details of CVE-2017-1395

This section provides detailed technical information about the vulnerability.

Vulnerability Description

The vulnerability allows a remote attacker to obtain sensitive information by exploiting the inadequate HTTP Strict Transport Security implementation.

Affected Systems and Versions

IBM Security Identity Governance and Intelligence Virtual Appliance versions 5.2 through 5.2.3.2 are affected.

Exploitation Mechanism

Attackers can exploit this vulnerability using man-in-the-middle techniques.

Mitigation and Prevention

Steps to address and prevent the CVE-2017-1395 vulnerability.

Immediate Steps to Take

Ensure proper configuration of HTTP Strict Transport Security.
Monitor network traffic for any suspicious activities.
Apply official fixes provided by IBM.

Long-Term Security Practices

Regularly update and patch the affected systems.
Conduct security assessments and audits periodically.

Patching and Updates

IBM has released official fixes to address the vulnerability.