IBM Cloud Pak for Security (CP4S) 1.6.0.1

CPE Details

IBM Cloud Pak for Security (CP4S) 1.6.0.1
ibm
cloud_pak_for_security
1.6.0.1
2021-05-20
09h52 +00:00
2021-05-25
12h40 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:ibm:cloud_pak_for_security:1.6.0.1:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

cloud_pak_for_security

Version

1.6.0.1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-20565 2021-05-14 16h15 +00:00 IBM Cloud Pak for Security (CP4S) 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism. IBM X-Force ID: 199236.
5.3
Moyen
CVE-2021-20564 2021-05-14 16h15 +00:00 IBM Cloud Pak for Security (CP4S) 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 199235.
5.9
Moyen
CVE-2020-4811 2021-05-14 16h15 +00:00 IBM Cloud Pak for Security (CP4S) 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 could allow a privileged user to inject inject malicious data using a specially crafted HTTP request due to improper input validation.
2.4
Bas