Description

IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158572.

Remediation

References

CVE-2019-4156

Related Vulnerabilities

WordPress Plugin Related Sites 'guid' Parameter SQL Injection (2.1)

Oracle HTTP Server Use After Free Vulnerability (CVE-2019-0211)

WordPress Plugin 1-click Retweet/Share/Like Cross-Site Scripting (5.2)

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11587)

WordPress Plugin Ultimate Membership Pro Cross-Site Request Forgery (8.6.1)

Severity

Medium

Classification

CVE-2019-4156 CWE-327 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities