Overview
- Description
- IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
- Source
- psirt@us.ibm.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 2.7
- Impact score
- 1.4
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
- Severity
- LOW
CVSS 3.0
- Type
- Secondary
- Base score
- 2.4
- Impact score
- 1.4
- Exploitability score
- 0.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
- Severity
- LOW
CVSS 2.0
- Type
- Primary
- Base score
- 4
- Impact score
- 2.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-20
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:security_guardium_key_lifecycle_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6F01AF46-F0FC-4FDE-9C02-D0024A6063CA",
"versionEndIncluding": "4.1.0.1",
"versionStartIncluding": "4.1.0"
},
{
"criteria": "cpe:2.3:a:ibm:security_guardium_key_lifecycle_manager:4.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F7C5C5BE-7E5C-455C-80F4-5C5783086D2B"
},
{
"criteria": "cpe:2.3:a:ibm:security_key_lifecycle_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8731B4A9-B6D3-434D-AA46-049D213C7BC1",
"versionEndIncluding": "3.0.0.4",
"versionStartIncluding": "3.0"
},
{
"criteria": "cpe:2.3:a:ibm:security_key_lifecycle_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E7B38B76-9EC7-423B-9DD4-E732F69198B2",
"versionEndIncluding": "3.0.1.5",
"versionStartIncluding": "3.0.1"
},
{
"criteria": "cpe:2.3:a:ibm:security_key_lifecycle_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E05A09D-6289-4E71-A096-1FDE5D85F52F",
"versionEndIncluding": "4.0.0.3",
"versionStartIncluding": "4.0"
}
],
"operator": "OR"
}
]
}
]