Weak Cryptographic Algorithm in IBM Data Risk Manager
CVE-2021-38862

5.9MEDIUM

Key Information:

Vendor
IBM
Status
Data Risk Manager
Vendor
CVE Published:
12 October 2021

Summary

IBM Data Risk Manager (iDNA) version 2.0.6 contains a vulnerability due to the use of cryptographic algorithms that are weaker than expected. This weakness may allow attackers to decrypt sensitive information, potentially leading to unauthorized access to confidential data. Organizations using this version should evaluate their risk exposure and consider immediate updates to strengthen data protection measures.

Affected Version(s)

Data Risk Manager 2.0.6

References

https://www.ibm.com/support/pages/node/6497499
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/207980
vdb-entryx_refsource_XF

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.