← Voltar para CVEs
CVE-2020-4699
MEDIUM5.3
Descricao
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186947.
Detalhes CVE
Pontuacao CVSS v3.15.3
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Vetor de ataqueADJACENT_NETWORK
ComplexidadeHIGH
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado10/12/2020
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
ibm:security_access_manageribm:security_verify_access
Fraquezas (CWE)
CWE-203
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/186947(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/6346619(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/186947(af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6346619(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.