Lucene search
IBMB08241532D6BA0DC2D9A6096C36A46B1BCD5B609DAE5F3F351BD0AC7515C614FHistoryJun 22, 2020 - 9:53 p.m.
Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2020-4327)
2020-06-2221:53:35
www.ibm.com
7
0.001 Low
EPSS
Percentile
42.3%
Summary
A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.8.
Vulnerability Details
CVEID:CVE-2020-4327
**DESCRIPTION:**IBM Security Secret Server could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
CVSS Base score: 2.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/177599 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM Security Secret Server | All |
Remediation/Fixes
Upgrade IBM Security Secret Server to version 10.8 as per the instructions here.
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security secret server | eq | any |
Related
nvd
nvd
CVE-2020-4327
2020-06-24 14:15:12
cve
cve
CVE-2020-4327
2020-06-24 14:15:12
cvelist
cvelist
CVE-2020-4327
2020-06-22 00:00:00
prion
prion
Information disclosure
2020-06-24 14:15:00
0.001 Low
EPSS
Percentile
42.3%
Related for B08241532D6BA0DC2D9A6096C36A46B1BCD5B609DAE5F3F351BD0AC7515C614F