CVE-2020-4795
IBM Security Identity Governance and Intelligence 5.2.6 is affected by CVE-2020-4795, a information disclosure vulnerability exploitable via a specially crafted HTTP request. The issue allows an unauthorized user to obtain sensitive data, and IBM’s own bulletin ties it to the forgot password endp...