Security Guardium Key Lifecycle Manager Security Vulnerabilities and Issues — Security Guardium Key Lifecycle Manager CVE List

Lucene search

IbmSecurity Guardium Key Lifecycle Manager

5 matches found

CVE•added 2024/12/17 6:15 p.m.•80 views

CVE-2024-49819

IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote attacker to obtain sensitive information in cleartext in a communication channel that can be sniffed by unauthorized actors.

7.5CVSS4AI score0.00018EPSS

CVE•added 2023/12/20 1:15 a.m.•38 views

CVE-2023-47704

IBM Security Guardium Key Lifecycle Manager 4.3 contains plain text hard-coded credentials or other secrets in source code repository. IBM X-Force ID: 271220.

7.5CVSS5.1AI score0.00038EPSS

CVE•added 2021/11/15 4:15 p.m.•35 views

CVE-2021-38979

IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the software does not also use a salt as part of the input. IBM X-Force ID: 212785.

7.5CVSS7.2AI score0.00088EPSS

CVE•added 2021/11/15 4:15 p.m.•35 views

CVE-2021-38983

IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 212792.

7.5CVSS7.2AI score0.00102EPSS

CVE•added 2021/11/15 4:15 p.m.•26 views

CVE-2021-38984

7.5CVSS7.2AI score0.00097EPSS