Clear Text Transmission of User Credentials in IBM Security Verify Information Queue 1.0.6 and 1.0.7

Clear Text Transmission of User Credentials in IBM Security Verify Information Queue 1.0.6 and 1.0.7

CVE-2021-20410 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

IBM Security Verify Information Queue 1.0.6 and 1.0.7 sends user credentials in plain clear text which can be read by an authenticated user using man in the middle techniques. IBM X-Force ID: 198190.

Learn more about our User Device Pen Test.