CVE-2021-20410
5.3
CVSS:3.0/C:H/PR:L/UI:N/I:N/AC:H/A:N/S:U/AV:N/RL:O/E:U/RC:C
Summary
IBM Security Verify Information Queue 1.0.6 and 1.0.7 sends user credentials in plain clear text which can be read by an authenticated user using man in the middle techniques. IBM X-Force ID: 198190.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Security Verify Information Queue | 1.0.6 | affected |
| IBM | Security Verify Information Queue | 1.0.7 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/6414773
- https://exchange.xforce.ibmcloud.com/vulnerabilities/196190
References
- https://www.ibm.com/support/pages/node/6414773
- https://exchange.xforce.ibmcloud.com/vulnerabilities/196190
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.