Vulnerabilities > CVE-2019-4637 - Unspecified vulnerability in IBM Security Secret Server

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

ibm

NVD

Published: 2020-01-28

Updated: 2020-01-30

Summary

IBM Security Secret Server 10.7 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 170043.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Security Secret Server *	1

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/170043
https://www.ibm.com/support/pages/node/1283242