3 matches found
Security Bulletin: Fixes for Multiple Security Vulnerabilities in IBM Security Identity Manager available (CVE-2014-6110, CVE-2014-6098, CVE-2014-6096, CVE-2014,6105, CVE-2014-6107, CVE-2014-6095)
Summary There are multiple security vulnerabilities in various components used by IBM Security Identity Manager Vulnerability Details The following vulnerabilities affect IBM Security Identity Manager SIM. CVE-ID: CVE-2014-6110 DESCRIPTION: IBM Security Identity Manager could allow a local user t...
CVE-2014-6110
IBM Security Identity Manager 6.x before 6.0.0.3 IF14 does not properly perform logout actions, which allows remote attackers to access sessions by leveraging an unattended workstation...
CVE-2014-6110
CVE-2014-6110: IBM Security Identity Manager 6.x before 6.0.0.3 IF14 improperly logs out prior users, enabling a local attacker to bypass security and access another user’s SIM session. Affected product: IBM Security Identity Manager 6.x (component: SIM). Root cause: logout handling flaw. Impact:...