Описание
IBM Security Guardium 10 and 10.5 uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the software does not also use a salt as part of the input. IBM X-Force ID: 124743.
Ссылки
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 10.0 (включая) до 10.5 (включая)
cpe:2.3:a:ibm:security_guardium:*:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00163
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-310
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
IBM Security Guardium 10 and 10.5 uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the software does not also use a salt as part of the input. IBM X-Force ID: 124743.
EPSS
Процентиль: 37%
0.00163
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-310