返回 CVE 瀏覽器

CVE-2020-4958

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.1620%

EPSS Percentile36.40th

Published2021年1月21日

Last Modified2024年11月21日

Vulnerability Description

IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. IBM X-Force ID: 192209.

Affected Platforms (CPE)

📦

Ibm

Security Identity Governance And Intelligence

= 5.2.6

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/192209

🔗 https://www.ibm.com/support/pages/node/6403247

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/192209

🔗 https://www.ibm.com/support/pages/node/6403247

相關漏洞威脅

CVE-2020-47958.2

IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information to an unauthorized user using a speci...

CVE-2018-17567.5

IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 is vulnerable to SQL injection. A remote attacker could send s...

CVE-2020-42327.5

IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credent...

CVE-2020-42457.5

IBM Security Identity Governance and Intelligence 5.2.6 does not require that users should have strong passwords by default, which...