CVE-2019-4520

IBM Security Directory Server 6.4.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 165178.

Published : 2019-10-02 15:15 Updated : 2019-10-09 23:50

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Ibm Security Directory Server 6.4.0 cpe:/a:ibm:security_directory_server:6.4.0
  1. Ibm (1) Search CVE
    1. Security Directory Server (1) Search CVE
      1. 6.4.0

CWE

ID Name Description Links
CWE-307 Improper Restriction of Excessive Authentication Attempts The software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more susceptible to brute force attacks. CVE

History of changes

Date Event
2019-10-04 13:27
2019-10-02 15:45

New CVE