CVE-2020-4185

Description

IBM Security Guardium 10.5, 10.6, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 174803.

CVSS breakdown

CVSS 3.0

Attack Vector

Network

Attack Complexity

High

Confidentiality

High

Availability

None

Integrity

None

Privileges Required

None

User Interaction

None

Scope

Unchanged

Changed

Unchanged

Affected products

ibm / security_guardium10.5 – 10.5
ibm / security_guardium10.6 – 10.6
ibm / security_guardium11.1 – 11.1

References

MISChttps://www.ibm.com/support/pages/node/6254369
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/174803