CVE-2017-1411
5.9
CVSS:3.0/A:N/AC:H/AV:N/C:H/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O
Summary
IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 127399.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Security Identity Governance and Intelligence | 5.2 | affected |
| IBM | Security Identity Governance and Intelligence | 5.2.1 | affected |
| IBM | Security Identity Governance and Intelligence | 5.2.2 | affected |
| IBM | Security Identity Governance and Intelligence | 5.2.2.1 | affected |
| IBM | Security Identity Governance and Intelligence | 5.2.3 | affected |
| IBM | Security Identity Governance and Intelligence | 5.2.3.1 | affected |
| IBM | Security Identity Governance and Intelligence | 5.2.3.2 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/127399
- http://www.ibm.com/support/docview.wss?uid=swg22016869
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/127399
- http://www.ibm.com/support/docview.wss?uid=swg22016869
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.