VYPR
Unrated severityNVD Advisory· Published Dec 17, 2024· Updated Dec 17, 2024

IBM Security Guardium Key Lifecycle Manager information disclosure

CVE-2024-49817

Description

IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 stores user credentials in configuration files which can be read by a local privileged user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:ibm:security_guardium_key_lifecycle_manager:4.1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:security_guardium_key_lifecycle_manager:4.1.0:*:*:*:*:*:*:*range: 4.1, 4.1.1, 4.2.0, 4.2.1
    • (no CPE)range: 4.1, 4.1.1, 4.2.0, 4.2.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.