7.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.9%
IBM Security Key Lifecycle Manager 3.0 and 3.0.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 166626.
exchange.xforce.ibmcloud.com/vulnerabilities/166626
www.ibm.com/support/pages/security-bulletin-ibm-security-key-lifecycle-manager-uses-weak-password-policy-cve-2019-4565