Security Bypass Vulnerability in IBM Security Secret Server
CVE-2020-4324

3.5LOW

Key Information:

Vendor
IBM
Vendor
CVE Published:
23 September 2020

Summary

IBM Security Secret Server versions prior to 10.9 are susceptible to a vulnerability that allows remote attackers to bypass essential security restrictions due to improper input validation. This weakness could potentially enable unauthorized access to sensitive information within the application. Users of this software should take necessary precautions and consider upgrading to the latest version to safeguard against possible exploits.

Affected Version(s)

Security Secret Server 10.8

References

CVSS V3.1

Score:
3.5
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.