2 matches found
CVE-2018-1962
CVE-2018-1962 affects IBM Security Identity Manager Virtual Appliance versions 7.0.1–7.0.1.10. Root cause: failure to invalidate session tokens on logout, enabling local attackers to log into a closed browser session. Reported impact is limited to local access scenarios with session termination b...
Security Bulletin: IBM Security Identity Manager is affected by multiple vulnerabilities (CVE-2018-1959, CVE-2018-1962, CVE-2018-1970)
Summary IBM Security Identity Manager VA ISIM VA has addressed the following vulnerabilities due to hard-coded credentials, the lack of proper session termination, and XML external entity injection. Vulnerability Details CVEID: CVE-2018-1959 DESCRIPTION: IBM Security Identity Manager Virtual...