First published: Thu Oct 08 2020(Updated: )
IBM Security Access Manager Appliance could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM ISAM | <=9.0.7 | |
IBM ISVA | <=10.0.0 | |
IBM Security Access Manager | =9.0.7.0 | |
IBM Security Verify Access | =10.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this security issue is CVE-2020-4699.
The severity of CVE-2020-4699 is medium with a severity value of 5.3.
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 are affected by CVE-2020-4699.
An attacker can exploit CVE-2020-4699 using timing side channel attacks.
Yes, you can find references for CVE-2020-4699 at the following links: [Reference 1](https://exchange.xforce.ibmcloud.com/vulnerabilities/186947) and [Reference 2](https://www.ibm.com/support/pages/node/6346619).