Lucene search

Openam (open Source Edition) Security Vulnerabilities

cve

CVE-2019-5915

Open redirect vulnerability in OpenAM (Open Source Edition) 13.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted...

6.1CVSS

6.2AI Score

0.001EPSS

2019-02-13 06:29 PM

cve

CVE-2018-0696

OpenAM (Open Source Edition) 13.0 and later does not properly manage sessions, which allows remote authenticated attackers to change the security questions and reset the login password via unspecified...

7.5CVSS

7.2AI Score

0.004EPSS

2019-02-13 06:29 PM

cve

CVE-2017-10873

OpenAM (Open Source Edition) allows an attacker to bypass authentication and access unauthorized contents via unspecified vectors. Note that this vulnerability affects OpenAM (Open Source Edition) implementations configured as SAML 2.0IdP, and switches authentication methods based on AuthnContext.....

8.1CVSS

8AI Score

0.004EPSS

2017-11-02 03:29 PM