CVE-2020-4367: High severity IBM Planning Analytics Local vulnerability

Q: What is the vulnerability ID of this vulnerability?

The vulnerability ID of this vulnerability is CVE-2020-4367.

Q: What is the severity of CVE-2020-4367?

The severity of CVE-2020-4367 is high.

Q: What is the description of CVE-2020-4367?

CVE-2020-4367 is a vulnerability in IBM Planning Analytics Local 2.0 that uses weaker than expected cryptographic algorithms, allowing an attacker to decrypt highly sensitive information.

Q: How does CVE-2020-4367 affect IBM Planning Analytics Local?

CVE-2020-4367 affects IBM Planning Analytics Local 2.0.

Q: How can I fix CVE-2020-4367?

To fix CVE-2020-4367, ensure you are running IBM Planning Analytics Local version 2.0.10 or higher, which uses stronger cryptographic algorithms.

Published Jun 1, 2020

Updated

IBM Planning Analytics Local 2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 179001.

Other sources

IBM Planning Analytics Local uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

— IBM

Affected Software

1 affected component

IBM Planning Analytics Local>=2.0.0<2.0.9.1

Remediation

Patch Available

https://www.ibm.com/support/pages/node/6214472

Event History

Jun 1, 2020

CVE Published

via IBM·12:00 AM

Data Sourced

via IBM·12:00 AM

DescriptionSeverityAffected Software

Jun 2, 2020

CVE Published

via MITRE·01:45 PM

Data Sourced

via MITRE·01:45 PM

DescriptionSeverityWeakness

Parent advisories

This vulnerability appears in the following advisories.

IBM-6214472

Frequently Asked Questions

What is the vulnerability ID of this vulnerability?

The vulnerability ID of this vulnerability is CVE-2020-4367.

What is the severity of CVE-2020-4367?