Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability - CVE-2020-4699 - Vulnerability Database
IBM WebSEAL

IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability - CVE-2020-4699

Medium
Reference: CVE-2020-4699
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-4699
Title: IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability
Overview:

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186947.