Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 2:4 a.m.23 views

Security Bulletin: IBM Security Verify Information Queue uses a relatively weak cryptographic algorithm to protect application data (CVE-2021-20406)

Summary The cryptographic algorithm that IBM Security Verify Information Queue ISIQ uses to encrypt and decrypt application data has a JSON web token JWT signing key that is shorter than the recommended length. As of v10.0.0, ISIQ has doubled the length of its JWT signing key to be in compliance...

4.9CVSS4.8AI score0.00464EPSS
Exploits0Affected Software1
Circl
Circl
added 2021/02/12 8:43 p.m.6 views

CVE-2021-20406

creationtimestamp| type| source ---|---|--- 2021-02-12 20:43:48+00:00| seen| https://t.me/cibsecurity/23551...

4.9CVSS5AI score0.00464EPSS
Exploits0References1
OSV
OSV
added 2021/02/12 5:15 p.m.5 views

CVE-2021-20406

IBM Security Verify Information Queue 1.0.6 and 1.0.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196184...

4.9CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2021/02/12 4:35 p.m.65 views

CVE-2021-20406

CVE-2021-20406 affects IBM Security Verify Information Queue (ISIQ) versions 1.0.6 and 1.0.7. The issue arises from using weaker than expected cryptographic algorithms to encrypt/decrypt application data, potentially enabling an attacker to decrypt highly sensitive information. IBM’s security bul...

4.9CVSS4.3AI score0.00464EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/02/12 4:35 p.m.28 views

CVE-2021-20406 IBM Security Verify Information Queue information disclosure

IBM Security Verify Information Queue 1.0.6 and 1.0.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196184...

2.2CVSS5.1AI score0.00464EPSS
Exploits0References2
Rows per page
Query Builder