Description

IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158572.

Remediation

References

CVE-2019-4156

Related Vulnerabilities

WordPress Plugin Abandoned Cart Lite for WooCommerce Cross-Site Request Forgery (5.8.5)

WordPress Plugin xili-tidy-tags Cross-Site Request Forgery (1.12.03)

PHP Out-of-bounds Read Vulnerability (CVE-2019-9023)

OpenVPN AS Improper Authentication Vulnerability (CVE-2020-8953)

WordPress Plugin Ultimate Category Excluder Cross-Site Request Forgery (1.1)

Severity

Medium

Classification

CVE-2019-4156 CWE-327 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities