CVE-2020-4661 MEDIUM

CVE-2020-4661

Vendor Ibm
Product Security Access Manager
Published October 12, 2020
Last update September 16, 2024

CVSS base score

5.3/10
Attack vector Adjacent
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.0/AC:H/I:N/C:H/UI:N/S:U/PR:N/A:N/AV:A/RL:O/RC:C/E:U

What the vulnerability does

01Description

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186142.

Key dates

02Disclosure timeline

October 12, 2020 CVE published
September 16, 2024 Record updated