Lucene search

K

IBM191EABD473797FEDA252D0C55D73B942C4839211EB12DDF6D2B8F61CF532939D

HistoryNov 04, 2021 - 5:51 p.m.

Security Bulletin: IBM Security Guardium is affected by a Weak Password Policy vulnerability (CVE-2021-20418)

2021-11-0417:51:18

www.ibm.com

18

ibm security guardium

weak password policy

vulnerability

cve-2021-20418

affected versions

EPSS

0.002

Percentile

51.5%

Summary

IBM Security Guardium has fixed this vulnerability

Vulnerability Details

CVEID:CVE-2021-20418
**DESCRIPTION:**IBM Security Guardium does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.
CVSS Base score: 4.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196279 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N)

Affected Products and Versions

Affected Product(s)	Version(s)
IBM Security Guardium	10.5

IBM Security Guardium| 10.6

IBM Security Guardium| 11.0

IBM Security Guardium| 11.1

IBM Security Guardium| 11.2

IBM Security Guardium| 11.3

Remediation/Fixes

Product	Versions	Fix
IBM Security Guardium	10.5

http://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=10.0&platform=Linux&function=fixId&fixids=SqlGuard_10.0p545_Bundle_Oct-19-2021&includeSupersedes=0&source=fc

IBM Security Guardium| 10.6
|

http://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=10.0&platform=Linux&function=fixId&fixids=SqlGuard_10.0p675_Bundle_Aug-11-2021&includeSupersedes=0&source=fc

IBM Security Guardium| 11.0
|

http://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=11.0&platform=Linux&function=fixId&fixids=SqlGuard_11.0p40_Bundle_Oct-04-2021&includeSupersedes=0&source=fc

IBM Security Guardium| 11.1
|

http://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=11.0&platform=Linux&function=fixId&fixids=SqlGuard_11.0p150_Bundle_Oct-26-2021&includeSupersedes=0&source=fc

IBM Security Guardium| 11.2
|

http://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=11.0&platform=Linux&function=fixId&fixids=SqlGuard_11.0p250_Bundle_Jul-14-2021&includeSupersedes=0&source=fc

IBM Security Guardium| 11.3
|

http://www.ibm.com/support/fixcentral/swg/quickorder?parent=IBM%20Security&product=ibm/Information+Management/InfoSphere+Guardium&release=11.0&platform=Linux&function=fixId&fixids=SqlGuard_11.0p330_Bundle_Oct-06-2021&includeSupersedes=0&source=fc

Workarounds and Mitigations

None

EPSS

0.002

Percentile

51.5%

Related for 191EABD473797FEDA252D0C55D73B942C4839211EB12DDF6D2B8F61CF532939D

cvelist1 cve1 prion1 nvd1