Resource Leak Vulnerability in IBM Secure External Authentication Server and Proxy
CVE-2021-29725

7.5HIGH

Key Information:

Vendor

IBM
Status
Secure External Authentication Server
Secure Proxy
Vendor
CVE Published:
15 July 2021

What is CVE-2021-29725?

The identified vulnerability in IBM's Secure External Authentication Server and Secure Proxy may permit remote users to exploit a resource leak, which could lead to denial of service. This weakness allows malicious actors to consume system resources excessively, causing the service to become unavailable. Users of affected versions should be aware of this vulnerability and implement necessary measures to mitigate potential impacts.

Affected Version(s)

Secure External Authentication Server 2.4.3.2

Secure External Authentication Server 6.0.1

Secure External Authentication Server 6.0.2

References

https://www.ibm.com/support/pages/node/6471577
x_refsource_CONFIRM
https://www.ibm.com/support/pages/node/6471615
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/201102
vdb-entryx_refsource_XF

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.