返回 CVE 浏览器

CVE-2020-4795

HIGH

8.2

CVSS Severity Score

EPSS Score0.1440%

EPSS Percentile37.28th

Published2021年2月9日

Last Modified2024年11月21日

Vulnerability Description

IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information to an unauthorized user using a specially crafted HTTP request. IBM X-Force ID: 189446.

Affected Platforms (CPE)

📦

Ibm

Security Identity Governance And Intelligence

= 5.2.6

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/189446

🔗 https://www.ibm.com/support/pages/node/6413399

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/189446

🔗 https://www.ibm.com/support/pages/node/6413399

相关漏洞威胁

CVE-2020-49589.8

IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a prov...

CVE-2018-17567.5

IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 is vulnerable to SQL injection. A remote attacker could send s...

CVE-2020-42327.5

IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credent...

CVE-2020-42457.5

IBM Security Identity Governance and Intelligence 5.2.6 does not require that users should have strong passwords by default, which...