2 matches found
Security Bulletin: IBM Security Identity Manager Virtual Appliance is vulnerable to an issue that allows the unrestricted upload of a file with dangerous type (CVE-2018-1453).
Summary IBM Security Identity Manager Virtual Appliance ISIM VA has addressed the following vulnerability. ISIM VA can allow an authenticated attacker the unrestricted ability to upload a file with a dangerous type. Vulnerability Details CVEID: CVE-2018-1453 DESCRIPTION: IBM Security Identity...
CVE-2018-1453
CVE-2018-1453 affects IBM Security Identity Manager Virtual Appliance (ISIM VA) 7.0 (and up to 7.0.1.6 per IBM bulletin) where an authenticated attacker can upload or transfer files of dangerous types that can be automatically processed in the environment. Root cause is improper handling of file ...