Description

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186140.

Remediation

References

CVE-2020-4660

Related Vulnerabilities

Apache Tomcat Other Vulnerability (CVE-2002-2006)

SharePoint Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1860)

Artifactory Insufficiently Protected Credentials Vulnerability (CVE-2018-1000424)

WordPress Plugin Newsletter-Send awesome emails from WordPress Open Redirect (3.7.0)

WordPress Plugin Gmedia Photo Gallery Cross-Site Scripting (0.9.3)

Severity

Medium

Classification

CVE-2020-4660 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities