Heap-Based Buffer Overflow Vulnerability in IBM Security Identity Manager Adapters
CVE-2021-20573

6.5MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
28 June 2021

Summary

IBM Security Identity Manager Adapters 6.0 and 7.0 are susceptible to a heap-based buffer overflow due to inadequate bounds checking. This vulnerability allows an authenticated remote attacker to manipulate memory on the server, potentially causing it to crash. Proper mitigations and updates are recommended to secure these products against such exploits.

Affected Version(s)

Security Identity Manager Adapters 6.0

Security Identity Manager Adapters 7.0

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.