Authentication Bypass Vulnerability in IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8

Authentication Bypass Vulnerability in IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8

CVE-2020-4205 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could allow an authenticated user to bypass security restrictions, and continue to access the server even after authentication certificates have been revolked. IBM X-Force ID: 174961.

Learn more about our Cis Benchmark Audit For Server Software.