First published: Fri Dec 10 2021(Updated: )
IBM Spectrum Copy Data Management 2.2.13 and earlier uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 211242.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Spectrum Copy Data Management | <=2.2.13 and below | |
IBM Spectrum Copy Data Management | <=2.2.13 | |
Linux Linux kernel |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for IBM Spectrum Copy Data Management is CVE-2021-38947.
The severity of CVE-2021-38947 is medium with a CVSS score of 5.9.
The affected versions of IBM Spectrum Copy Data Management are up to and including 2.2.13.
Exploiting CVE-2021-38947 can allow an attacker to decrypt highly sensitive information.
To fix the vulnerability CVE-2021-38947 in IBM Spectrum Copy Data Management, upgrade to a version higher than 2.2.13.