Oct 8, 2020 8:01 pm EDT
Categorized: Medium Severity
Share this post:
IBM Cúram Social Program Management uses MD5 algorithm for hashing token in a single instance which less safe than default SHA-256 cryptographic algorithm used throughout the Cúram application.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| Curam SPM | 7.0.10 |
| Curam SPM | 7.0.9 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6346575
from IBM Product Security Incident Response Team https://ift.tt/3nx33zS
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.