First published: Mon Feb 03 2020(Updated: )
IBM Security Directory Server 6.4.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 165953.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Security Directory Server | >=6.4.0.0<6.4.0.20 | |
<=6.4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2019-4551 is medium with a CVSS score of 5.3.
CVE-2019-4551 allows anonymous users to access protected areas of IBM Security Directory Server.
IBM Security Directory Server version 6.4.0 up to and including version 6.4.0.20 is affected by CVE-2019-4551.
Yes, IBM has provided a fix for CVE-2019-4551. Please refer to the IBM Security Directory Server documentation for instructions on how to apply the fix.
Yes, you can find more information about CVE-2019-4551 on the IBM X-Force Exchange website and the IBM Support Pages.