Credential Storage Vulnerability in IBM Security Verify Bridge
CVE-2021-38863

6.5MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
23 September 2021

Summary

IBM Security Verify Bridge version 1.0.5.0 has a security issue where user credentials are stored in clear text. This flaw allows anyone with local authentication to access sensitive credential information, potentially leading to unauthorized actions or data breaches. Proper handling and storage of credentials are essential to safeguarding user data, and affected users should take swift action to mitigate risks associated with this vulnerability.

Affected Version(s)

Security Verify Bridge 1.0.5.0

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.