CVE-2019-4520
First published: Tue Oct 01 2019(Updated: )
IBM Security Directory Server 6.4.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 165178.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Directory Server | =6.4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM Security Directory Server issue?
The vulnerability ID for this issue is CVE-2019-4520.
What is the severity level of CVE-2019-4520?
The severity level of CVE-2019-4520 is high.
How does this vulnerability affect IBM Security Directory Server 6.4.0?
IBM Security Directory Server 6.4.0 is affected by this vulnerability.
What is the potential impact of this vulnerability?
This vulnerability could allow a remote attacker to brute force account credentials.
What is the recommended remediation for this vulnerability?
IBM recommends following the instructions provided in their official support documentation to mitigate this vulnerability.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm security directory server
- version/ibm security directory server/6.4.0