CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

CNVD•added 2022/07/12 12:0 a.m.•25 views

IBM Security Access Manager Appliance Access Control Error Vulnerability (CNVD-2022-87650)

The IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from IBM of the United States. The product is primarily used for access control and Web-based threat protection, providing system performance monitoring, log analysis, and diagnostics.IBM...

7.8CVSS4.8AI score0.00075EPSS

Exploits0References1

Prion•added 2022/07/08 6:15 p.m.•12 views

Code injection

IBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 225081...

5CVSS7.1AI score0.00146EPSS

Exploits0References2Affected Software1

CNNVD•added 2022/07/08 12:0 a.m.•1 views

IBM Security Access Manager Appliance 加密问题漏洞

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from IBM, USA. The product is mainly used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnosis. A security vulnerability exists in...

7.5CVSS6.6AI score0.00146EPSS

Exploits0References3

IBM Security Bulletins•added 2022/01/04 5:37 p.m.•186 views

Security Bulletin: IBM Security Access Manager has fixed a vulnerability in the log4j library shipped with the product. (CVE-2021-4104)

Summary The IBM Security Access Manager version 9.0 ships with a version of log4j that is vulnerable to CVE-2021-4104. The log4j library is no longer used by the IBM Security Access Manager product and a Fixpack has been provided to remove the unused library. Vulnerability Details CVEID:...

7.5CVSS2.2AI score0.72202EPSS

Exploits9Affected Software1

IBM Security Bulletins•added 2021/12/20 4:50 a.m.•160 views

Security Bulletin: A security vulnerability has been identified in Log4j 2 used in IBM Guardium Data Encryption (GDE) (CVE-2021-44228)

Summary Log4j 2 is a logging package used by IBM Security Guardium Data Encryption GDE. That package has a security vulnerability. Consult the bulletin listed below for details. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrar...

10CVSS0.7AI score0.94358EPSS

Exploits341Affected Software1

CNNVD•added 2021/03/26 12:0 a.m.•2 views

Micro Focus Access Manager Appliance 信息泄露漏洞

Micro Focus Access Manager Appliance is an application from Micro Focus UK. It is used to improve security and simplify management. An information disclosure vulnerability exists in Micro Focus Access Manager product, which can be exploited by attackers to expose information and disclose advanced...

7.5CVSS5.6AI score0.10545EPSS

Exploits0References2

CNNVD•added 2021/03/26 12:0 a.m.•1 views

Micro Focus Access Manager Appliance 跨站脚本漏洞

Micro Focus Access Manager Appliance is an application from Micro Focus UK. It is used to improve security and simplify management. A cross-site scripting vulnerability exists in Micro Focus Access Manager product. An attacker could exploit the vulnerability to cause configuration corruption...

6.1CVSS5.3AI score0.00328EPSS

Exploits0References2

OSV•added 2020/10/14 5:15 p.m.•1 views

CVE-2020-4395

IBM Security Access Manager Appliance 9.0.7 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 179358...

5.4CVSS6.5AI score

Exploits0References2

IBM Security Bulletins•added 2020/10/14 4:34 p.m.•54 views

Security Bulletin: Security Vulnerabilities in IBM WebSphere Liberty fixed in IBM Security Access Manager Appliance

Summary A Security Vulnerability in IBM WebSphere Liberty has been fixed in the IBM Security Access Manager Appliance Vulnerability Details CVEID: CVE-2019-4441 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0, and Liberty could allow a remote attacker to obtain sensitive...

5.3CVSS2.4AI score0.00362EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2019/06/21 8:5 p.m.•56 views

Security Bulletin: Multiple Security Vulnerabilities fixed in IBM Security Access Manager Appliance

Summary Multiple Security vulnerabilities have been fixed in the 9.0.7 IBM Security Access Manager ISAM appliance. Vulnerability Details CVEID: CVE-2018-0732 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by the sending of a very large prime value to the client by a malicious...

9.8CVSS0.6AI score0.78382EPSS

Exploits3Affected Software2

IBM Security Bulletins•added 2019/05/30 9:45 p.m.•71 views

Security Bulletin: Multiple Security vulnerabilities have been fixed in the IBM Security Access Manager Appliance

Summary IBM Security Access Manager Appliance has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2018-10915 DESCRIPTION: PostgreSQL could allow a remote attacker to bypass security restrictions, caused by an issue with improperly resting internal state in between...

9.8CVSS1.2AI score0.78382EPSS

Exploits3Affected Software3

IBM Security Bulletins•added 2018/06/22 2:26 a.m.•40 views

Security Bulletin: IBM Security Access Manager appliances are affected by kernel vulnerabilities (CVE-2017-1000364, CVE-2016-10208)

Summary IBM Security Access Manager has addressed the following vulnerabilities, which affect the IBM Security Access Manager appliances. Vulnerability Details CVEID: CVE-2017-1000364 DESCRIPTION: Linux Kernel could allow a local attacker to gain elevated privileges on the system, caused by a a...

7.4CVSS1.4AI score0.0309EPSS

Exploits3Affected Software1

IBM Security Bulletins•added 2018/06/16 10:4 p.m.•37 views

Security Bulletin: IBM Security Access Manager Appliance is affected by GnuTLS vulnerabilities

Summary IBM Security Access Manager Appliance has addressed the following vulnerabilities in the GnuTLS packages used by the appliance. Vulnerability Details CVEID: CVE-2017-7869 DESCRIPTION: GnuTLS is vulnerable to a denial of service, caused by an integer overflow and heap-based buffer overflow...

9.8CVSS1.5AI score0.05592EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2018/06/16 10:4 p.m.•18 views

Security Bulletin: IBM Security Access Manager Appliance is affected by a potential information exposure vulnerability (CVE-2017-1480)

Summary IBM Security Access Manager Appliance has addressed the following information exposure vulnerability. Vulnerability Details CVEID: CVE-2017-1480 DESCRIPTION: IBM Security Access Manager Appliance stores potentially sensitive information in log files that could be read by a remote user. CV...

4.3CVSS0.9AI score0.00128EPSS

Exploits0Affected Software1

NVD•added 2018/06/06 5:29 p.m.•14 views

CVE-2017-1476

IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive...

5.9CVSS5.4AI score0.00238EPSS

Exploits0References3

CNVD•added 2018/04/25 12:0 a.m.•2 views

IBM Security Access Manager Appliance Information Disclosure Vulnerability

IBM Security Access Manager Appliance is an application for information security management from IBM, USA. The program enables access management control through an integrated appliance for web, mobile and cloud computing. A security vulnerability exists in IBM Security Access Manager Appliance th...

7.5CVSS6.5AI score0.00106EPSS

Exploits0References1

NVD•added 2018/02/15 10:29 p.m.•12 views

CVE-2017-8976

A Remote Code Execution vulnerability in Hewlett Packard Enterprise Moonshot Provisioning Manager Appliance version v1.20 was found...

10CVSS9.7AI score0.51056EPSS

Exploits0References2

OSV•added 2018/02/15 10:29 p.m.•1 views

CVE-2017-8976

A Remote Code Execution vulnerability in Hewlett Packard Enterprise Moonshot Provisioning Manager Appliance version v1.20 was found...

9.8CVSS5.9AI score0.51056EPSS

Exploits0References2

NVD•added 2018/01/11 5:29 p.m.•12 views

CVE-2017-1478

IBM Security Access Manager Appliance 9.0.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 128613...

3.3CVSS3.2AI score0.00089EPSS

Exploits0References4

OSV•added 2018/01/11 5:29 p.m.•1 views

CVE-2017-1478

IBM Security Access Manager Appliance 9.0.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 128613...

3.3CVSS5.8AI score

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by