Resource Leak Vulnerability in IBM Secure External Authentication Server and Proxy
CVE-2021-29725

7.5HIGH

Key Information:

Vendor
IBM
Vendor
CVE Published:
15 July 2021

Summary

The identified vulnerability in IBM's Secure External Authentication Server and Secure Proxy may permit remote users to exploit a resource leak, which could lead to denial of service. This weakness allows malicious actors to consume system resources excessively, causing the service to become unavailable. Users of affected versions should be aware of this vulnerability and implement necessary measures to mitigate potential impacts.

Affected Version(s)

Secure External Authentication Server 2.4.3.2

Secure External Authentication Server 6.0.1

Secure External Authentication Server 6.0.2

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.