2 matches found
CVE-2020-4246
CVE-2020-4246 affects IBM Security Identity Governance and Intelligence (IGI) 5.2.6. The flaw is an XML External Entity (XXE) vulnerability when processing XML data, allowing a remote attacker to expose sensitive information or consume memory resources. Affected product: IBM IGI 5.2.6; root cause...
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-4246)
Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to a security vulnerability. The Virtual Appliance is vulnerable to an XML External Entity Injection XXE attack that could expose sensitive information or consume memory resources...