|
197151
|
5.3 |
MEDIUM
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2.6 could allow an unauthorized user to obtain sensitive information through user enumeration. IBM X-Force ID: 175422.
|
NVD-CWE-noinfo
|
CVE-2020-4244
|
2024-11-21 14:32 |
2020-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197152
|
5.3 |
MEDIUM
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to set the secure flag for the session cookie in SSL mode.…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2020-4233
|
2024-11-21 14:32 |
2020-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197153
|
7.5 |
HIGH
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credentials which could be used to attempt further attacks against the syste…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2020-4232
|
2024-11-21 14:32 |
2020-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197154
|
6.5 |
MEDIUM
Network
|
ibm
|
security_identity_governance_and_intelligence
|
IBM Security Identity Governance and Intelligence 5.2.6 could allow an authenticated user to perform unauthorized commands due to hazardous input validation. IBM X-Force ID: 175335.
|
CWE-20
Improper Input Validation
|
CVE-2020-4231
|
2024-11-21 14:32 |
2020-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197155
|
7.5 |
HIGH
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 179158.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-4379
|
2024-11-21 14:32 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197156
|
4.9 |
MEDIUM
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 could allow a privileged authenticated user to perform unauthorized actions using a specially crated HTTP POST command. IBM X-Force ID: 179157.
|
NVD-CWE-noinfo
|
CVE-2020-4378
|
2024-11-21 14:32 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197157
|
5.4 |
MEDIUM
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…
|
CWE-79
Cross-site Scripting
|
CVE-2020-4358
|
2024-11-21 14:32 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197158
|
4.3 |
MEDIUM
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2020-4357
|
2024-11-21 14:32 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197159
|
7.5 |
HIGH
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 178424.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-4350
|
2024-11-21 14:32 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197160
|
7.5 |
HIGH
Network
|
ibm
|
spectrum_scale
|
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 178423.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2020-4349
|
2024-11-21 14:32 |
2020-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
