CVE-2021-38984
published 2021-11-15CVE-2021-38984: IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 212793.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | security_guardium_key_lifecycle_manager | — | — |
| ibm | security_guardium_key_lifecycle_manager | 4.1.0 – 4.1.0.1 | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | — | — |
| ibm | security_key_lifecycle_manager | 3.0 – 3.0.0.4 | — |
| ibm | security_key_lifecycle_manager | 3.0.1 – 3.0.1.5 | — |
| ibm | security_key_lifecycle_manager | 4.0 – 4.0.0.3 | — |