Heap-Based Buffer Overflow Vulnerability in IBM Security Identity Manager Adapters
CVE-2021-20573
6.5MEDIUM
Summary
IBM Security Identity Manager Adapters 6.0 and 7.0 are susceptible to a heap-based buffer overflow due to inadequate bounds checking. This vulnerability allows an authenticated remote attacker to manipulate memory on the server, potentially causing it to crash. Proper mitigations and updates are recommended to secure these products against such exploits.
Affected Version(s)
Security Identity Manager Adapters 6.0
Security Identity Manager Adapters 7.0
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved