CVE-2021-20474

Summary

IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

Affected Software

VendorProductVersion RangeStatus
IBMGuardium Data Encryption3.0.0.2affected
IBMGuardium Data Encryption4.0.0.4affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References