First published: Tue May 18 2021(Updated: )
IBM Security Identity Manager 7.0.2 stores user credentials in plain clear text which can be read by an authenticated user. IBM X-Force ID: 199998.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Security Identity Manager | =7.0.2 | |
IBM AIX | ||
Linux Linux kernel | ||
Microsoft Windows | ||
Oracle Solaris | ||
IBM ISIM VA | <=7.0.2 | |
IBM ISIM VA | <=7.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-29683 is a vulnerability in IBM Security Identity Manager 7.0.2 that allows an authenticated user to read user credentials stored in plaintext.
CVE-2021-29683 has a severity score of 6.5, which is considered medium.
CVE-2021-29683 affects IBM Security Identity Manager 7.0.2.
To fix CVE-2021-29683, upgrade to a version of IBM Security Identity Manager that does not have the vulnerability.
For more information about CVE-2021-29683, you can visit the IBM X-Force Exchange website or refer to IBM's support pages.