CVE-2021-39011

Name of the Vulnerable Software and Affected Versions IBM Cloud Pak for Security (CP4S) versions 1.10.0.0 through 1.10.6.0

Description The issue is related to insufficient protection of registration data, which could allow a remote attacker to access confidential data. Potentially sensitive information is stored in log files, which could be read by a privileged user.

Recommendations For versions 1.10.0.0 through 1.10.6.0, update to a version that includes the necessary security fixes to prevent sensitive information from being stored in log files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.