CVE-2018-1680

IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not require that users should have strong passwords by default, which…

ibm·CWE-521·Published 2019-04-02

CVSS

—

EPSS

0.01

KEV

Exploits

cve.orgen

222 chars

IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 145236.

NVDen

222 chars

NVDes

228 chars

IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 no requiere que los usuarios tengan contraseñas robustas por defecto, lo que facilita que los atacantes comprometan las cuentas de usuario. IBM X-Force ID: 145236.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.0	Primary	NVD	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N