Insufficient Verification of Code Origin and Integrity in IBM Security Secret Server 10.7

Insufficient Verification of Code Origin and Integrity in IBM Security Secret Server 10.7

CVE-2019-4640 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

IBM Security Secret Server 10.7 processes patches, image backups and other updates without sufficiently verifying the origin and integrity of the code which could result in an attacker executing malicious code. IBM X-Force ID: 170046.

Learn more about our Cis Benchmark Audit For Server Software.