Lucene search
IBMBD2494420C2D5C9CD858396F4AA6ADC05629E465121E60CC6C4C824C9B119A89HistoryMay 27, 2020 - 8:25 a.m.
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-4232)
2020-05-2708:25:10
www.ibm.com
9
0.001 Low
EPSS
Percentile
44.0%
Summary
IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to a security vulnerability. The Virtual Appliance could allow an attacker to enumerate usernames to find valid login credentials.
Vulnerability Details
CVEID:CVE-2020-4232
**DESCRIPTION:**IBM Security Identity Governance Virtual Appliance could allow an attacker to enumerate usernames to find valid login credentials which could be used to attempt further attacks against the system.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/175336 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM Security Identity Governance and Intelligence | 5.2.6 |
Remediation/Fixes
| Affected Product(s) | Version(s) | First Fix |
|---|---|---|
| IBM Security Identity Governance and Intelligence | 5.2.6 | 5.2.6.0-ISS-SIGI-FP0001 |
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm security identity governance and intelligence | eq | 5.2.6 |
Related
cve
cve
CVE-2020-4232
2020-05-28 15:15:12
nvd
nvd
CVE-2020-4232
2020-05-28 15:15:12
cvelist
cvelist
CVE-2020-4232
2020-05-27 00:00:00
prion
prion
Design/Logic Flaw
2020-05-28 15:15:00
0.001 Low
EPSS
Percentile
44.0%
Related for BD2494420C2D5C9CD858396F4AA6ADC05629E465121E60CC6C4C824C9B119A89