CVE-2020-4604
First published: Tue Jan 12 2021(Updated: )
IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local privileged user. IBM X-Force ID: 184861.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Guardium Insights | =2.0.2 | |
| Linux Linux kernel | ||
| <=2.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM Security Guardium Insights vulnerability?
The vulnerability ID for this IBM Security Guardium Insights vulnerability is CVE-2020-4604.
How severe is the CVE-2020-4604 vulnerability?
The severity of the CVE-2020-4604 vulnerability is medium, with a severity value of 4.4.
What is the description of the CVE-2020-4604 vulnerability?
The CVE-2020-4604 vulnerability in IBM Security Guardium Insights 2.0.2 allows local privileged users to read user credentials stored in plain text.
Which software versions are affected by CVE-2020-4604?
IBM Security Guardium Insights version 2.0.2 is affected by the CVE-2020-4604 vulnerability.
How can I fix the CVE-2020-4604 vulnerability in IBM Security Guardium Insights?
To fix the CVE-2020-4604 vulnerability in IBM Security Guardium Insights, you should apply the necessary patch provided by IBM.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/remedy
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/softwarecombine
- agent/event
- agent/tags
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- vendor/ibm
- canonical/ibm security guardium insights
- version/ibm security guardium insights/2.0.2
- vendor/linux
- canonical/linux linux kernel