Lucene search
K

13 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/02/23 12:30 p.m.8 views

Security Bulletin: IBM Db2 used by IBM Security Verify Governance has multiple vulnerabilities

Summary IBM Security Verify Governance ISVG, now re-branded as IBM Verify Identity Governance IVIG, uses IBM Db2 database. Information about security vulnerabilities affecting IBM Db2 has been published in security bulletins. Vulnerability Details Refer to the security bulletins listed in the...

8.8CVSS5.4AI score0.00542EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/05/13 12:0 a.m.2 views

CVE-2020-4957

IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information in URL parameters that could aid in future attacks against the system. IBM X-Force ID: 192208...

5.3CVSS5.4AI score0.00834EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/01/21 2:15 p.m.3 views

CVE-2020-4969

IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle...

5.9CVSS5.9AI score0.00666EPSS
Exploits0References2
OSV
OSV
added 2021/01/21 2:15 p.m.3 views

CVE-2020-4968

IBM Security Identity Governance and Intelligence 5.2.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 192427...

6.5CVSS6.2AI score0.00322EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/01/20 12:0 a.m.2 views

CVE-2020-4969

IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle...

5.9CVSS4.9AI score0.00666EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/05/28 12:0 a.m.2 views

Unspecified Vulnerability in IBM Security Identity Governance and Intelligence (CNVD-2020-31573)

IBM Security Identity Governance and Intelligence IGI is a suite of identity governance solutions from IBM in the United States. The product includes features such as lifecycle management, access risk assessment and identity management. A security vulnerability exists in IBM Security IGI version...

7.5CVSS6.7AI score0.01125EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2019/08/26 12:0 a.m.2 views

IBM Identity Governance and Intelligence SQL Injection (CVE-2018-1756)

An SQL injection vulnerability exists in IBM Identity Governance and Intelligence. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to execute arbitrary SQL commands on the affected system...

5CVSS6.1AI score0.10599EPSS
Exploits5
OSV
OSV
added 2019/02/21 5:29 p.m.1 views

CVE-2018-1947

IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

6.1CVSS5.4AI score
Exploits0References2
OSV
OSV
added 2019/02/21 5:29 p.m.3 views

CVE-2018-1948

IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes...

4.3CVSS5.6AI score0.01139EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2018/09/12 12:0 a.m.43 views

IBM Identity Governance and Intelligence 5.2.3.2 / 5.2.4 - SQL Injection

Exploit Title: Unauthenticated Remote SQLi Date: 11/09/2018 Exploit Author: Mohamed Sayed - From SecureMisr Company Vendor Homepage: https://www-01.ibm.com/support/docview.wss?uid=ibm10728883 Version: IGI 5.2.3.2 REQUIRED Tested on: Windows 10 CVE : CVE-2018-1756 Hello , IBM IGI version 5.2.3.2 i...

7.5CVSS7.6AI score0.10599EPSS
Exploits5
OSV
OSV
added 2018/07/13 4:29 p.m.1 views

CVE-2017-1395

IBM Security Identity Governance and Intelligence Virtual Appliance 5.2 through 5.2.3.2 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive...

5.9CVSS5.8AI score
Exploits0References2
CNVD
CNVD
added 2017/01/06 12:0 a.m.0 views

IBM Security Privileged Identity Manager Information Disclosure Vulnerability (CNVD-2017-00196)

IBM Security Privileged Identity Manager is an identity management product within IBM Identity Governance and Management, an identity governance solution from IBM USA, that protects, automates, and audits the use of privileged identities to help defend against insider threats and improve security...

6.5CVSS6.1AI score0.00988EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/06 12:0 a.m.1 views

IBM Security Privileged Identity Manager Information Disclosure Vulnerability (CNVD-2017-00195)

IBM Security Privileged Identity Manager is an identity management product within IBM Identity Governance and Management, an identity governance solution from IBM in the U.S. It is used to protect, automate, and audit the use of privileged identities to help defend against insider threats and...

7.5CVSS6.1AI score0.01688EPSS
Exploits0References1
Rows per page
Query Builder