PT-2021-14046 · Ibm · Ibm Security Secret Server

Published

2021-09-14

·

Updated

2021-09-24

·

CVE-2021-20569

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions: IBM Security Secret Server versions up to 11.0
Description: The issue allows an attacker to enumerate usernames due to improper input validation.
Recommendations: For IBM Security Secret Server versions up to 11.0, update to a version later than 11.0 to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2021-20569

Affected Products

Ibm Security Secret Server