Max CVSS | 5.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-4597 | 4.3 |
IBM Security Guardium Insights 2.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to.
|
21-07-2021 - 11:39 | 13-01-2021 - 19:15 | |
CVE-2020-4596 | 5.0 |
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184812.
|
21-07-2021 - 11:39 | 13-01-2021 - 19:15 | |
CVE-2020-4594 | 5.0 |
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184800.
|
21-07-2021 - 11:39 | 13-01-2021 - 19:15 | |
CVE-2020-4595 | 5.0 |
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184819.
|
21-07-2021 - 11:39 | 13-01-2021 - 19:15 | |
CVE-2020-4604 | 2.1 |
IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local privileged user. IBM X-Force ID: 184861.
|
15-01-2021 - 18:21 | 13-01-2021 - 19:15 | |
CVE-2020-4602 | 2.1 |
IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 184836.
|
15-01-2021 - 18:09 | 13-01-2021 - 19:15 | |
CVE-2020-4600 | 5.0 |
IBM Security Guardium Insights 2.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force I
|
15-01-2021 - 17:25 | 13-01-2021 - 19:15 | |
CVE-2020-4599 | 5.0 |
IBM Security Guardium Insights 2.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force I
|
15-01-2021 - 17:15 | 13-01-2021 - 19:15 |