CVE-2004-1709

medium

Description

Datakey Rainbow iKey2032 USB token, when using the CIP client package, does not encrypt communications between the token and the driver, which could allow local users to obtain the PINs of other users.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/16887

http://marc.info/?l=bugtraq&m=109164096013467&w=2

Details

Source: Mitre, NVD

Published: 2004-08-04

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00065