CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4604
https://notcve.org/view.php?id=CVE-2020-4604
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local privileged user. IBM X-Force ID: 184861. IBM Security Guardium Insights versión 2.0.2, almacena credenciales de usuario en texto sin cifrar que puede ser leído por un usuario privilegiado local. IBM X-Force ID: 184861. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184881 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4602
https://notcve.org/view.php?id=CVE-2020-4602
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 184836. IBM Security Guardium Insights versión 2.0.2, almacena credenciales de usuario en texto sin cifrar que puede ser leído por un usuario local. IBM X-Force ID: 184836. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184836 • CWE-522: Insufficiently Protected Credentials •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4600
https://notcve.org/view.php?id=CVE-2020-4600
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 184832. IBM Security Guardium Insights versión 2.0.2, podría permitir a un atacante remoto obtener información confidencial cuando un mensaje de error técnico detallado es devuelto en el navegador. Esta información podría ser usada en nuevos ataques cont... • https://exchange.xforce.ibmcloud.com/vulnerabilities/184832 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4599
https://notcve.org/view.php?id=CVE-2020-4599
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 184824. IBM Security Guardium Insights versión 2.0.2, podría permitir a un atacante remoto obtener información confidencial cuando un mensaje de error técnico detallado es devuelto en el navegador. Esta información podría ser usada en nuevos ataques cont... • https://exchange.xforce.ibmcloud.com/vulnerabilities/184824 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4597
https://notcve.org/view.php?id=CVE-2020-4597
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic. IBM X-Force ID: 184822. IBM Security Guardium Insights versión 2.0.2, no establece el atributo seguro en tokens de autorización o cookies de ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/184822 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4596
https://notcve.org/view.php?id=CVE-2020-4596
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184812. IBM Security Guardium Insights versión 2.0.2, utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-Force ID: 184812. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184821 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4595
https://notcve.org/view.php?id=CVE-2020-4595
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184819. IBM Security Guardium Insights versión 2.0.2, utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-Force ID: 184819. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184819 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4594
https://notcve.org/view.php?id=CVE-2020-4594
13 Jan 2021 — IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 184800. IBM Security Guardium Insights versión 2.0.2, utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-Force ID: 184800. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184800 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •