First published: Tue May 05 2020(Updated: )
IBM Security Identity Governance Virtual Appliance could allow an attacker to enumerate usernames to find valid login credentials which could be used to attempt further attacks against the system.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Security Identity Governance and Intelligence | <=5.2.6 | |
IBM Security Identity Governance and Intelligence | =5.2.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this security issue is CVE-2020-4232.
The severity of CVE-2020-4232 is high, with a severity value of 7.5.
IBM Security Identity Governance and Intelligence version 5.2.6 is affected by CVE-2020-4232.
CVE-2020-4232 allows an attacker to enumerate usernames and find valid login credentials, which could be used for further attacks against the system.
For information on how to fix CVE-2020-4232, please refer to the official IBM support page linked in the references section.