3 matches found
Security Bulletin: IBM Security Access Manager and IBM Tivoli Access Manager for e-business are affected by a potential information exposure vulnerability (CVE-2017-1476)
Summary IBM Security Access Manager and IBM Tivoli Access Manager for e-business have addressed the following potential information exposure vulnerability. Vulnerability Details CVEID: CVE-2017-1476 DESCRIPTION: IBM Security Access Manager Appliance could allow a remote attacker to obtain sensiti...
CVE-2017-1476
IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive...
CVE-2017-1476
CVE-2017-1476 affects IBM Security Access Manager family. An information disclosure vulnerability arises from failure to properly enable HTTP Strict Transport Security (HSTS), enabling a remote attacker to obtain sensitive information via MITM. Affected products and versions include IBM Security ...