Denial of Service Vulnerability in IBM Security Verify Information Queue
CVE-2021-20404

2.6LOW

Key Information:

Vendor
IBM
Vendor
CVE Published:
11 February 2021

Summary

A vulnerability in IBM Security Verify Information Queue versions 1.0.6 and 1.0.7 allows remote users to exploit an invalid cookie value, leading to a denial of service. This flaw may prevent users from logging in to the system, thereby disrupting normal operations and causing potential service interruptions.

Affected Version(s)

Security Verify Information Queue 1.0.6

Security Verify Information Queue 1.0.7

References

CVSS V3.1

Score:
2.6
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.