Weak Cryptographic Algorithms in IBM Security Directory Server
CVE-2019-4540

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Security Directory Server
Vendor: CVE Published:; 4 February 2020

What is CVE-2019-4540?

IBM Security Directory Server 6.4.0 is susceptible to a cryptographic vulnerability that allows attackers to exploit weaker cryptographic algorithms. This may lead to the decryption of sensitive information, potentially compromising user data and system security. Organizations utilizing this version should be aware of the risks associated with this vulnerability and take necessary measures to protect their information.

Affected Version(s)

Security Directory Server 6.4.0

References

https://www.ibm.com/support/pages/node/1288660

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/165813

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 4, 2020
Vulnerability Reserved
Jan 3, 2019