IBM Security Guardium Key Lifecycle Manager Unauthorized Access Vulnerability

2023-03-2400:00:00

China National Vulnerability Database

www.cnvd.org.cn

ibm

security guardium

key lifecycle manager

unauthorized access

vulnerability

encryption

centralization

automation

authenticated user

targeted attack

site system security

0.001 Low

EPSS

Percentile

36.6%

JSON

IBM Security Guardium Key ifecycle Manager is managing the encryption key management process through centralization, streamlining and automation to help protect encrypted data and simplify encryption key management. vulnerability. The vulnerability is due to the fact that the affected version can allow an authenticated user to perform an out-of-authority access operation. An attacker could exploit the vulnerability to launch a targeted attack against the target, compromising site system security.

CPENameOperatorVersion
ibm security guardium key lifecycle managereq3.0
ibm security guardium key lifecycle managereq3.0.1
ibm security guardium key lifecycle managereq4.0
ibm security guardium key lifecycle managereq4.1
ibm security guardium key lifecycle managereq4.1.1

Name	Operator	Version
ibm security guardium key lifecycle manager	eq	3.0
ibm security guardium key lifecycle manager	eq	3.0.1
ibm security guardium key lifecycle manager	eq	4.0
ibm security guardium key lifecycle manager	eq	4.1
ibm security guardium key lifecycle manager	eq	4.1.1

0.001 Low

EPSS

Percentile

36.6%

JSON

Related for CNVD-2023-20078