Lucene search
+L

15 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:6 p.m.29 views

Security Bulletin: IBM Security Access Manager Appliance is affected by a vulnerability in NSS (CVE-2017-7805)

Summary IBM Security Access Manager Appliance has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-7805 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in TLS 1.2 generating handshake hashes...

7.5CVSS2.2AI score0.03153EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:4 p.m.20 views

Security Bulletin: IBM Security Access Manager Appliance is affected by a potential information exposure vulnerability (CVE-2017-1480)

Summary IBM Security Access Manager Appliance has addressed the following information exposure vulnerability. Vulnerability Details CVEID: CVE-2017-1480 DESCRIPTION: IBM Security Access Manager Appliance stores potentially sensitive information in log files that could be read by a remote user. CV...

4.3CVSS0.9AI score0.01776EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:3 p.m.22 views

Security Bulletin: IBM Security Access Manager Appliance is affected by an open redirect vulnerability (CVE-2017-1534)

Summary IBM Security Access Manager Appliance has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-1534 DESCRIPTION: IBM Security Access Manager Appliance could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim t...

6.1CVSS1.7AI score0.01031EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:0 p.m.37 views

Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability known as the SWEET32 Birthday attack (CVE-2016-2183)

Summary The IBM Security Access Manager appliances are affected by the SWEET32 Birthday attack vulnerability, which could allow an attacker to obtain sensitive information. Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive informatio...

7.5CVSS2.7AI score0.95707EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:50 p.m.34 views

Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability in the libgcrypt library (CVE-2016-6313)

Summary A vulnerability has been identified in the libgcrypt library. IBM Security Access Manager appliances use the libgcrypt library and are affected by this vulnerability. Vulnerability Details CVEID: CVE-2016-6313 DESCRIPTION: GnuPG could provide weaker than expected security, caused by an...

5.3CVSS1.6AI score0.03597EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:50 p.m.34 views

Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability in Busybox (CVE-2014-9645)

Summary A vulnerability has been identified in Busybox. IBM Security Access Manager appliances use Busybox and are affected by this vulnerabilty. Vulnerability Details CVEID: CVE-2014-9645 DESCRIPTION: Busybox could allow a local attacker to bypass security restrictions, caused by an error when...

5.5CVSS1.7AI score0.00635EPSS
Exploits2Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:50 p.m.48 views

Security Bulletin: IBM Security Access Manager appliances may be affected by a kernel vulnerability known as the Dirty COW bug (CVE-2016-5195)

Summary Linux Kernel could allow a local attacker to gain elevated privileges on the system, caused by a race condition when handling the copy-on-write COW breakage of private read-only memory mappings by the memory subsystem. This vulnerability is known as the Dirty COW bug. Under certain...

7.2CVSS2.4AI score0.83524EPSS
Exploits82Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:48 p.m.21 views

Security Bulletin: IBM Security Access Manager appliances are affected by an information disclosure vulnerability (CVE-2016-3045)

Summary IBM Security Access Manager appliances store sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history. Vulnerability Details CVEID: CVE-2016-3045 DESCRIPTION: IBM...

4.3CVSS1.7AI score0.00842EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:48 p.m.28 views

Security Bulletin: IBM Security Access Manager appliances are affected by a response splitting vulnerability in WebSphere Application Server (CVE-2016-0359)

Summary IBM Security Access Manager version 8 & 9 appliances are affected by a HTTP response splitting vulnerability in IBM WebSphere Application Server. Vulnerability Details CVEID: CVE-2016-0359 DESCRIPTION: IBM WebSphere Application Server is vulnerable to HTTP response splitting attacks. A...

6.1CVSS1.1AI score0.01465EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:48 p.m.19 views

Security Bulletin: IBM Security Access Manager appliances are affected by an XML External Entity Injection vulnerability (CVE-2016-3027)

Summary IBM Security Access Manager for Web is vulnerable to a denial of service, caused by an XML External Entity Injection XXE error when processing XML data. Vulnerability Details CVEID: CVE-2016-3027 DESCRIPTION: IBM Security Access Manager for Web is vulnerable to a denial of service, caused...

6.5CVSS1.6AI score0.01314EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:45 p.m.45 views

Security Bulletin: IBM Security Access Manager for Web is affected by vulnerabilities in OpenSSL (CVE-2016-0797, CVE-2016-0705)

Summary Vulnerabilities in OpenSSL affect IBM Security Access Manager for Web. Vulnerability Details CVEID: CVE-2016-0797 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference in the BNhex2bn/BNdec2bn function. An attacker could exploit this vulnerability...

10CVSS1.7AI score0.27022EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:41 p.m.49 views

Security Bulletin: A vulnerability in SQLite affects IBM Security Access Manager for Web (CVE-2015-3416)

Summary There is a denial of service vulnerability in SQLite, which affects IBM Security Access Manager for Web. Vulnerability Details CVEID: CVE-2015-3416 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by the failure to properly handle precision and width values during...

7.5CVSS1.7AI score0.05531EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:39 p.m.34 views

Security Bulletin: A vulnerability in nss-softokn affects IBM Security Access Manager for Web (CVE-2015-2730)

Summary Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. IBM Security Access Manager for Web is affected by a vulnerability in the nss-softokn package. Vulnerability Details CVEID: CVE-2015-2730...

4.3CVSS1.6AI score0.03594EPSS
Exploits0Affected Software1
NVD
NVD
added 2014/12/18 4:59 p.m.18 views

CVE-2014-6088

IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to obtain sensitive information by sniffing the network during use of the null SSL cipher...

5CVSS6.1AI score0.01369EPSS
Exploits0References4
Prion
Prion
added 2014/12/18 4:59 p.m.16 views

Code injection

IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote authenticated users to cause a denial of service disrupted system operations by uploading a file to a protected area...

4CVSS6.7AI score0.01254EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder