CyberSec.Space Logo
Back to CVE Browser

CVE-2021-20538

CRITICAL
9.1
CVSS Severity Score
EPSS Score0.0580%
EPSS Percentile30.53th
PublishedMay 10, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a user to obtain sensitive information or perform actions they should not have access to due to incorrect authorization mechanisms. IBM X-Force ID: 198919.

Affected Platforms (CPE)

πŸ“¦
Ibm

Cloud Pak For Security

= 1.5.0.0
πŸ“¦
Ibm

Cloud Pak For Security

= 1.5.0.1

References & Advisories

πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/198919
πŸ”— https://www.ibm.com/support/pages/node/6450849
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/198919
πŸ”— https://www.ibm.com/support/pages/node/6450849

Related Vulnerabilities

CVE-2021-205789.8

IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 could allow an attacker to perform unauthorized actions d...

CVE-2020-46279.0

IBM Cloud Pak for Security 1.3.0.1(CP4S) potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary comman...

CVE-2021-298947.5

IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 uses weaker than expected cryptographic algorithms that c...

CVE-2021-296967.2

IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could allow a remote authenticated atta...