Authentication Bypass in IBM Security Directory Server
CVE-2019-4551

5.3MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
4 February 2020

Summary

IBM Security Directory Server version 6.4.0 is vulnerable to an authentication bypass issue that permits anonymous users to access sensitive resources and functionalities without proper authentication checks. This vulnerability exposes critical areas of the directory server to unauthorized access, potentially leading to data exposure or misuse. Organizations using this version are urged to implement security measures immediately to mitigate risks associated with this flaw.

Affected Version(s)

Security Directory Server 6.4.0

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.