The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, 2.1, and 2.2 uses cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/81533http://www-01.ibm.com/support/docview.wss?uid=swg21631537
