Vulnerability Database

318,638

Total vulnerabilities in the database

CVE-2021-38973

IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Published: Nov 12, 2021
Updated: Nov 16, 2025
CVE: CVE-2021-38973
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 2.7
AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
ibm / security_guardium_key_lifecycle_manager	4.1.1	4.1.1.x
ibm / security_key_lifecycle_manager	3.0	3.0.0.4.x
ibm / security_key_lifecycle_manager	3.0.1	3.0.1.5.x
ibm / security_key_lifecycle_manager	4.0	4.0.0.3.x
ibm / security_guardium_key_lifecycle_manager	4.1.0	4.1.0.1.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo