CVE-2021-20415
First published: Wed Jul 07 2021(Updated: )
IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 196217.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Guardium Data Encryption | =4.0.0.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM Guardium Data Encryption vulnerability?
The vulnerability ID is CVE-2021-20415.
What is the severity of CVE-2021-20415?
The severity of CVE-2021-20415 is high with a score of 7.5.
How does IBM Guardium Data Encryption (GDE) 4.0.0.4 handle account lockout?
IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting.
What could a remote attacker do with this vulnerability?
A remote attacker could exploit this vulnerability to brute force account credentials.
Are there any references for CVE-2021-20415?
Yes, you can find references for CVE-2021-20415 at the following links: [Link 1](https://exchange.xforce.ibmcloud.com/vulnerabilities/196217) and [Link 2](https://www.ibm.com/support/pages/node/6469691).
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm guardium data encryption
- version/ibm guardium data encryption/4.0.0.4