CVE-2021-20410
MEDIUMIBM Security Verify Information Queue <1.0.8 - Info Disclosure
Title source: llmDescription
IBM Security Verify Information Queue 1.0.6 and 1.0.7 sends user credentials in plain clear text which can be read by an authenticated user using man in the middle techniques. IBM X-Force ID: 198190.
Scores
CVSS v3
5.3
EPSS
0.0012
EPSS Percentile
31.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Classification
CWE
CWE-522
Status
published
Affected Products (2)
ibm/security_verify_information_queue
ibm/security_verify_information_queue
Timeline
Published
Feb 12, 2021
Tracked Since
Feb 18, 2026