CVE-2020-4594: High severity ibm security guardium insights vulnerability

Q: What is the vulnerability ID?

The vulnerability ID is CVE-2020-4594.

Q: What is the severity of CVE-2020-4594?

The severity of CVE-2020-4594 is high with a severity value of 7.5.

Q: What is the affected software for CVE-2020-4594?

The affected software for CVE-2020-4594 is IBM Security Guardium Insights 2.0.2.

Q: How can the vulnerability be exploited?

The vulnerability can be exploited by an attacker to decrypt highly sensitive information.

Q: What is the CWE ID associated with CVE-2020-4594?

The CWE ID associated with CVE-2020-4594 is 327.

Published Jan 12, 2021

Updated

IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184800.

Other sources

IBM Security Guardium Insights uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

Affected Software

3 affected componentsFixes available

IBM Security Guardium Insights<=2.0.2

IBM Security Guardium Insights=2.0.2

Linux Linux kernel

Remediation

Patch Available

https://www.ibm.com/support/pages/node/6403463

Event History

Jan 12, 2021

CVE Published

via IBM·12:00 AM

Jan 13, 2021

CVE Published

via MITRE·06:10 PM

Data Sourced

via MITRE·06:10 PM

DescriptionSeverityWeakness

Parent advisories

This vulnerability appears in the following advisories.

IBM-6403463

Frequently Asked Questions

What is the vulnerability ID?

The vulnerability ID is CVE-2020-4594.

What is the severity of CVE-2020-4594?