Lucene search
IBM3A90F51A2E8187B19C86619D88E0702577FC2BE322FBD3D74EA53F93E96B6977HistoryJun 08, 2021 - 9:52 p.m.
Security Bulletin: IBM DataPower Gateway vulnerability in TLS (CVE-2020-4831)
2021-06-0821:52:38
www.ibm.com
9
0.001 Low
EPSS
Percentile
43.8%
Summary
IBM has addressed CVE-2020-4831
Vulnerability Details
CVEID:CVE-2020-4831
**DESCRIPTION:**IBM DataPower Gateway uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/189965 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM DataPower Gateway | 10.0.0.0-10.0.1.0 |
Remediation/Fixes
| Affected Product(s) | Fixed in Version | APAR |
|---|---|---|
| IBM DataPower Gateway | 10.0.1.1 | IT34760 |
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm datapower gateway | eq | 10 |
Related
ibm
ibm
Security Bulletin: IBM MQ Appliance vulnerability in TLS (CVE-2020-4831)
2021-06-30 10:47:25
cvelist
cvelist
CVE-2020-4831
2021-03-11 00:00:00
cve
cve
CVE-2020-4831
2021-03-12 17:15:12
prion
prion
Code injection
2021-03-12 17:15:00
nvd
nvd
CVE-2020-4831
2021-03-12 17:15:12
0.001 Low
EPSS
Percentile
43.8%
Related for 3A90F51A2E8187B19C86619D88E0702577FC2BE322FBD3D74EA53F93E96B6977