CVE-2018-1946
CVE-2018-1946
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.9EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
21 Feb 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance supports interaction between multiple actors and allows those actors to negotiate which algorithm should be used as a protection mechanism such as encryption or authentication, but it does not select the strongest algorithm that is available to both parties. IBM X-Force ID: 153388.
CVSS:3.0/A:N/AC:H/AV:N/C:H/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O
Affected products
IBM · Security Identity Governance and Intelligence