Description
IBM BigFix Compliance (TEMA SUAv1 SCA SCM) 1.9.70 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 123671.
Scores
CVSS v3
9.8
EPSS
0.0031
EPSS Percentile
54.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-521
Status
published
Products (2)
ibm/bigfix_security_compliance_analytics
1.9.70
IBM/Endpoint Manager for Security and Compliance
1.9.70
Published
Jun 07, 2017
Tracked Since
Feb 18, 2026