CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-20479

HIGH
7.5
CVSS Severity Score
EPSS Score0.0430%
EPSS Percentile20.80th
Published2022年5月9日
Last Modified2024年11月21日

Vulnerability Description

IBM Cloud Pak System 2.3.0 through 2.3.3.3 Interim Fix 1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 197498.

Affected Platforms (CPE)

📦
Ibm

Cloud Pak System

>= 2.3.0.0 and < 2.3.3.4

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/197498
🔗 https://www.ibm.com/support/pages/node/6562263
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/197498
🔗 https://www.ibm.com/support/pages/node/6562263

相关漏洞威胁

CVE-2019-45219.8

Platform System Manager in IBM Cloud Pak System 2.3 is potentially vulnerable to CVS Injection. A remote attacker could execute ar...

CVE-2020-46279.0

IBM Cloud Pak for Security 1.3.0.1(CP4S) potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary comman...

CVE-2019-41308.8

IBM Cloud Pak System 2.3 and 2.3.0.1 could allow a remote attacker to upload arbitrary files, which could allow the attacker to ex...

CVE-2020-49178.8

IBM Cloud Pak System 2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauth...