How severe is CVE-2020-4660?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Ibm Security Access Manager

CVE-2020-4660

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an attacker to obtain sensitive using timing side channel attacks which could aid in further attacks against the system. IBM X-Force ID: 186140.

EPSS: 0.001 (31.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.0/AV:A/A:N/PR:N/UI:N/S:U/C:H/I:N/AC:H/RC:C/RL:O/E:U.

Affected products

Ibm Security Access Manager — versions 9.0.7
Ibm Security Verify Access — versions 10.0.0

References

www.ibm.com/support/pages/node/6346619 (x_refsource_CONFIRM)
ibm-sam-cve20204660-info-disc (186140) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2020-4660?: CVE-2020-4660 is a medium-severity vulnerability in Ibm Security Access Manager. CVSS score: 5.3/10. Published 2020-10-12.
How severe is CVE-2020-4660?: Medium severity. CVSS v3 base score is 5.3 out of 10.