Information Disclosure Vulnerability in IBM Security Secret Server
CVE-2019-4636

2.7LOW

Key Information:

Vendor
IBM
Vendor
CVE Published:
28 January 2020

Summary

IBM Security Secret Server version 10.7 is susceptible to an information disclosure vulnerability that might allow an authenticated user to gain access to sensitive information through improperly generated error messages. This could potentially expose critical data, threatening the security of user and organizational data. Organizations using affected versions should ensure that proper security measures and updates are applied to mitigate this risk.

Affected Version(s)

Security Secret Server 10.7

References

CVSS V3.1

Score:
2.7
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.