Cryptographic Vulnerability in IBM Emptoris Strategic Supply Management
CVE-2020-4898
5.9MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 7 January 2021
Summary
IBM Emptoris Strategic Supply Management version 10.1.3 employs cryptographic algorithms that are not sufficiently robust, potentially allowing attackers to gain access to and decrypt sensitive information. This vulnerability may expose organizations to risks related to confidential data leakage and unauthorized information access, emphasizing the need for stronger security measures and timely updates.
Affected Version(s)
Emptoris Strategic Supply Management 10.1.3
References
CVSS V3.1
Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved