Description

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186142.

Remediation

References

CVE-2020-4661

Related Vulnerabilities

WordPress Plugin Image Gallery with Slideshow 'upload-file.php' Arbitrary File Upload (1.5)

EspoCRM Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7986)

Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-2370)

IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-4989)

Oracle Database Server CVE-2014-6546 Vulnerability (CVE-2014-6546)

Severity

Medium

Classification

CVE-2020-4661 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities