First published: Fri Jun 25 2021(Updated: )
IBM Guardium Data Encryption (GDE) 3.0.0.3 and 4.0.0.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 195711.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Guardium Data Encryption | =3.0.0.3 | |
IBM Guardium Data Encryption | =4.0.0.4 | |
<=3.0.0.2 | ||
<=4.0.0.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-20379.
The severity of CVE-2021-20379 is high.
IBM Guardium Data Encryption (GDE) versions 3.0.0.2 to 4.0.0.4 are affected by CVE-2021-20379.
CVE-2021-20379 could allow an attacker to decrypt highly sensitive information.
Refer to the IBM support page for detailed remediation steps for CVE-2021-20379.