Description

IBM Security Access Manager 9.0 and IBM Security Verify Access Docker 10.0.0 stores user credentials in plain clear text which can be read by an unauthorized user.

Remediation

References

CVE-2021-20439

Related Vulnerabilities

WordPress Plugin Advanced Access Manager Multiple Vulnerabilities (6.6.1)

phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-10804)

Swagger UI DOM XSS vulnerability

MySQL CVE-2015-0499 Vulnerability (CVE-2015-0499)

Moodle Other Vulnerability (CVE-2007-3555)

Severity

High

Classification

CVE-2021-20439 CWE-522 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities