Description

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186140.

Remediation

References

CVE-2020-4660

Related Vulnerabilities

WordPress Plugin ImageDrop 'ImageDrop.php' Blind SQL Injection (1.1.2)

WordPress Plugin WP Songbook Cross-Site Scripting (2.0.11)

IBM WebSEAL Improper Input Validation Vulnerability (CVE-2019-4036)

WordPress Plugin Joy Of Text Lite-SMS messaging for WordPress SQL Injection (2.3.0)

Jboss EAP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7465)

Severity

Medium

Classification

CVE-2020-4660 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities