CVE-2021-20439

high

Description

IBM Security Access Manager 9.0 and IBM Security Verify Access Docker 10.0.0 stores user credentials in plain clear text which can be read by an unauthorized user.

References

https://www.ibm.com/support/pages/node/6471903

https://exchange.xforce.ibmcloud.com/vulnerabilities/196453

Details

Source: Mitre, NVD

Published: 2021-07-15

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.00205

Detections

Analytics