CVE-2020-4778
published 2020-10-12CVE-2020-4778: IBM Curam Social Program Management 7.0.9 and 7.0.10 uses MD5 algorithm for hashing token in a single instance which less safe than default SHA-256…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
IBM Curam Social Program Management 7.0.9 and 7.0.10 uses MD5 algorithm for hashing token in a single instance which less safe than default SHA-256 cryptographic algorithm used throughout the Cúram application. IBM X-Force ID: 189156.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |
| ibm | curam_spm | — | — |
| ibm | curam_spm | — | — |