CVE-2020-4602: Medium severity ibm security guardium insights vulnerability
Published Jan 12, 2021
·Updated
IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 184836.
Other sources
IBM Security Guardium Insights stores user credentials in plain in clear text which can be read by a local user.
Affected Software
3 affected componentsFixes available
IBM Security Guardium Insights<=2.0.2
IBM Security Guardium Insights=2.0.2
Linux Linux kernel
Remediation
Patch Available
Event History
Jan 12, 2021
CVE Published
via IBM·12:00 AM
Jan 13, 2021
CVE Published
via MITRE·06:10 PM
Data Sourced
via MITRE·06:10 PM
DescriptionSeverityWeakness
Frequently Asked Questions
1
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-4602.
2
What is the severity of CVE-2020-4602?
The severity of CVE-2020-4602 is medium.
3
How does CVE-2020-4602 affect IBM Security Guardium Insights?
CVE-2020-4602 allows a local user to read user credentials stored in plain text in IBM Security Guardium Insights 2.0.2.
4
Is Linux Kernel affected by CVE-2020-4602?
No, Linux Kernel is not affected by CVE-2020-4602.
5
How can I fix CVE-2020-4602?
To fix CVE-2020-4602, update IBM Security Guardium Insights to version 2.0.2 or later. You can find the patch on the IBM Passport Advantage website.