CVEブラウザに戻る

CVE-2020-4245

HIGH

7.5

CVSS Severity Score

EPSS Score0.0900%

EPSS Percentile43.91th

Published2020年5月28日

Last Modified2024年11月21日

Vulnerability Description

IBM Security Identity Governance and Intelligence 5.2.6 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 175423.

Affected Platforms (CPE)

📦

Ibm

Security Identity Governance And Intelligence

= 5.2.6

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/175423

🔗 https://www.ibm.com/support/pages/node/6207908

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/175423

🔗 https://www.ibm.com/support/pages/node/6207908

関連する脆弱性情報

CVE-2020-49589.8

IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a prov...

CVE-2020-47958.2

IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information to an unauthorized user using a speci...

CVE-2018-17567.5

IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 is vulnerable to SQL injection. A remote attacker could send s...

CVE-2020-42327.5

IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credent...