First published: Thu Oct 08 2020(Updated: )
IBM Security Access Manager Appliance could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM ISAM | <=9.0.7 | |
IBM ISVA | <=10.0.0 | |
IBM Security Access Manager | =9.0.7.0 | |
IBM Security Verify Access | =10.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this security vulnerability is CVE-2020-4661.
The severity level of CVE-2020-4661 is medium.
This vulnerability can be exploited through timing side channel attacks.
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 are affected by CVE-2020-4661.
Yes, IBM has provided a fix for CVE-2020-4661. Please refer to the IBM support page for more information.