CVE-2020-4341
First published: Wed Jun 17 2020(Updated: )
IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 178181.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Secret Server | <10.8 | |
| <=All |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for IBM Security Secret Server?
The vulnerability ID for IBM Security Secret Server is CVE-2020-4341.
What is the severity level of CVE-2020-4341?
The severity level of CVE-2020-4341 is medium with a CVSS score of 5.3.
How can a remote attacker exploit CVE-2020-4341?
A remote attacker can exploit CVE-2020-4341 by obtaining sensitive information when a detailed technical error message is returned in the browser.
What software version is affected by CVE-2020-4341?
All versions of IBM Security Secret Server up to and excluding version 10.8 are affected by CVE-2020-4341.
Is there a fix or solution available for CVE-2020-4341?
Yes, IBM has provided a solution for CVE-2020-4341. Please refer to the IBM Support page for more information.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/severity
- agent/author
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- vendor/ibm
- canonical/ibm security secret server
- version/ibm security secret server/all