CVE-2019-4156

Medium

IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt…

ibm·CWE-327·Published 2019-06-25

CVSS

5.9

EPSS

0.01

KEV

Exploits

cve.orgen

192 chars

IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158572.

NVDen

192 chars

IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158572.

IBM Security Access Manager versión 9.0.1 hasta 9.0.6, utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información muy confidencial. ID de IBM X-Force: 158572.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N
3.0	Primary	cve.org	5.9	—	—	CVSS:3.0/AC:H/UI:N/A:N/PR:N/S:U/AV:N/C:H/I:N/E:U/RC:C/RL:O
3.0	Primary	cve.org	5.9	—	—	CVSS:3.0/AC:H/UI:N/A:N/PR:N/S:U/AV:N/C:H/I:N/E:U/RC:C/RL:O
3.0	Secondary	NVD	5.9	2.2	3.6	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	NVD	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N