First published: Wed Jul 07 2021(Updated: )
IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 196217.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Guardium Data Encryption | =4.0.0.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-20415.
The severity of CVE-2021-20415 is high with a score of 7.5.
IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting.
A remote attacker could exploit this vulnerability to brute force account credentials.
Yes, you can find references for CVE-2021-20415 at the following links: [Link 1](https://exchange.xforce.ibmcloud.com/vulnerabilities/196217) and [Link 2](https://www.ibm.com/support/pages/node/6469691).