CVE-2020-4245

Опубликовано: 28 мая 2020

Источник: nvd

CVSS3: 5.9

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

IBM Security Identity Governance and Intelligence 5.2.6 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 175423.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/175423
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6207908
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/175423
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6207908
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:security_identity_governance_and_intelligence:5.2.6:*:*:*:*:*:*:*

EPSS

Процентиль: 39%

0.00176

Низкий

5.9 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-521

Связанные уязвимости

GHSA-93vx-mrg3-q6cw

github

больше 3 лет назад

EPSS

Процентиль: 39%

0.00176

Низкий

5.9 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-521