Security Access Manager For Mobile@8.0.1 Security Vulnerabilities and Issues — Security Access Manager For Mobile@8.0.1 CVE List

Lucene search

IbmSecurity Access Manager For Mobile8.0.1

4 matches found

CVE•added 2018/01/10 5:29 p.m.•51 views

CVE-2017-1534

IBM Security Access Manager Appliance 8.0.0 and 9.0.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a u...

6.1CVSS5.8AI score0.00291EPSS

CVE•added 2017/02/01 8:59 p.m.•45 views

CVE-2016-3045

IBM Security Access Manager for Web stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history.

4.3CVSS3.9AI score0.00187EPSS

CVE•added 2016/11/25 3:59 a.m.•41 views

CVE-2016-3025

IBM Security Access Manager for Mobile 8.x before 8.0.1.4 IF3 and Security Access Manager 9.x before 9.0.1.0 IF5 do not properly restrict failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach.

8.1CVSS7.7AI score0.00536EPSS

CVE•added 2018/04/23 1:29 p.m.•36 views

CVE-2017-1473

IBM Security Access Manager Appliance 8.0.0 through 8.0.1.6 and 9.0.0 through 9.0.3.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 128605.

7.5CVSS7.2AI score0.00112EPSS