Ibm: >> Security Secret Server >> 10.7.000059 Security Vulnerabilities
IBM Security Secret Server 10.7 could disclose sensitive information included in installation files to an unauthorized user. IBM X-Force ID: 178182.
CVSS Score
5.3
EPSS Score
0.002
Published
2020-06-24
IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 179988.
CVSS Score
5.9
EPSS Score
0.002
Published
2020-06-24
IBM Security Secret Server 10.7 processes patches, image backups and other updates without sufficiently verifying the origin and integrity of the code which could result in an attacker executing malicious code. IBM X-Force ID: 170046.
CVSS Score
4.4
EPSS Score
0.001
Published
2020-02-19
Page 2