Cryptographic Vulnerability in IBM Emptoris Strategic Supply Management
CVE-2020-4898

5.9MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
7 January 2021

Summary

IBM Emptoris Strategic Supply Management version 10.1.3 employs cryptographic algorithms that are not sufficiently robust, potentially allowing attackers to gain access to and decrypt sensitive information. This vulnerability may expose organizations to risks related to confidential data leakage and unauthorized information access, emphasizing the need for stronger security measures and timely updates.

Affected Version(s)

Emptoris Strategic Supply Management 10.1.3

References

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.