Improper Authentication in IBM Event Streams 10.0.0
CVE-2020-4662

6.5MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
14 August 2020

Summary

IBM Event Streams version 10.0.0 contains a vulnerability that enables authenticated users to execute unauthorized tasks on a schema due to a flaw in authentication validation. This could potentially allow users to alter or manipulate critical aspects of the event streaming service, posing significant risks to data integrity and system operations.

Affected Version(s)

Event Streams 10.0.0

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.