CVE-2021-20378
published 2021-07-07CVE-2021-20378: IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not invalidate session after logout which could allow an authenticated user to impersonate another…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
IBM Guardium Data Encryption (GDE) 3.0.0.2 and 4.0.0.4 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 195709.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | guardium_data_encryption | — | — |
| ibm | guardium_data_encryption | — | — |