Weak Cryptographic Algorithms in IBM Data Risk Manager
CVE-2020-4613

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Data Risk Manager
Vendor: CVE Published:; 22 September 2020

Summary

IBM Data Risk Manager version 2.0.6 is affected by a vulnerability due to the implementation of cryptographic algorithms that are weaker than expected. This situation could enable an attacker to exploit the system and decrypt sensitive data, potentially leading to unauthorized access to critical information. It is essential for users of this product to take immediate action to address this security issue and ensure that sensitive data remains protected.

Affected Version(s)

Data Risk Manager 2.0.6

References

https://www.ibm.com/support/pages/node/6335281

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/184925

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 22, 2020
Vulnerability Reserved
Dec 30, 2019