Description

IBM Security Access Manager 9.0 and IBM Security Verify Access Docker 10.0.0 stores user credentials in plain clear text which can be read by an unauthorized user.

Remediation

References

CVE-2021-20439

Related Vulnerabilities

MySQL CVE-2020-2903 Vulnerability (CVE-2020-2903)

Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5593)

WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (1.5.2)

Oracle HTTP Server CVE-2020-2952 Vulnerability (CVE-2020-2952)

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13449)

Severity

High

Classification

CVE-2021-20439 CWE-522 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities