CVE-2020-4699

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186947.

Published: Oct 12, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-4699
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 2.9
AV:A/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-203

Affected Software
References

Software	From	Fixed in
ibm / security_access_manager	9.0.7.0	9.0.7.0.x
ibm / security_verify_access	10.0.0	10.0.0.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/186947
https://www.ibm.com/support/pages/node/6346619

Vulnerability Database

289,697

CVE-2020-4699