4 matches found
Heap overflow
IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...
CVE-2022-22323
IBM Security Identity Manager’s Password Synchronization Plug-in for Windows AD (10.x) contains a heap-based buffer overflow leading to denial of service when exploited by an authenticated attacker. The official IBM bulletin confirms CVE-2022-22323 and provides a mitigation: upgrade to IBM Securi...
CVE-2022-22323
IBM Security Identity Manager IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of servic...
CVE-2021-20488
IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passwords of other users in the Windows AD environment when IBM Security Identity Manager Windows Password Synch Plug-in is deployed and configured. IBM X-Force ID: 197789...