Improper Authentication in IBM Security Guardium Insights
CVE-2020-4167

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Security Guardium Insights
Vendor: CVE Published:; 27 August 2020

What is CVE-2020-4167?

IBM Security Guardium Insights version 2.0.1 has a vulnerability that can enable attackers to access sensitive data or execute unauthorized actions due to improper authentication practices. This flaw may allow unauthorized users to exploit various functionalities within the software, leading to potential information disclosure and security risks. It is essential for organizations using this product to assess their configurations and apply necessary updates to mitigate these risks.

Affected Version(s)

Security Guardium Insights 2.0.1

References

https://www.ibm.com/support/pages/node/6323297

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/174403

vdb-entryx_refsource_XF

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 27, 2020
Vulnerability Reserved
Dec 30, 2019