Credential Storage Vulnerability in IBM Security Verify Bridge
CVE-2021-38863
6.5MEDIUM
Summary
IBM Security Verify Bridge version 1.0.5.0 has a security issue where user credentials are stored in clear text. This flaw allows anyone with local authentication to access sensitive credential information, potentially leading to unauthorized actions or data breaches. Proper handling and storage of credentials are essential to safeguarding user data, and affected users should take swift action to mitigate risks associated with this vulnerability.
Affected Version(s)
Security Verify Bridge 1.0.5.0
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved