CyberSec.Space Logo
Back to CVE Browser

CVE-2020-4958

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1620%
EPSS Percentile36.40th
PublishedJan 21, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. IBM X-Force ID: 192209.

Affected Platforms (CPE)

πŸ“¦
Ibm

Security Identity Governance And Intelligence

= 5.2.6

References & Advisories

πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/192209
πŸ”— https://www.ibm.com/support/pages/node/6403247
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/192209
πŸ”— https://www.ibm.com/support/pages/node/6403247

Related Vulnerabilities

CVE-2020-47958.2

IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information to an unauthorized user using a speci...

CVE-2018-17567.5

IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 is vulnerable to SQL injection. A remote attacker could send s...

CVE-2020-42327.5

IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credent...

CVE-2020-42457.5

IBM Security Identity Governance and Intelligence 5.2.6 does not require that users should have strong passwords by default, which...