Security Access Manager For Web@8.0.0 Security Vulnerabilities and Issues — Security Access Manager For Web@8.0.0 CVE List

Lucene search

IbmSecurity Access Manager For Web8.0.0

2 matches found

CVE•added 2017/02/01 8:59 p.m.•45 views

CVE-2016-3045

IBM Security Access Manager for Web stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history.

4.3CVSS3.9AI score0.00187EPSS

CVE•added 2016/11/25 3:59 a.m.•29 views

CVE-2016-3028

IBM Security Access Manager for Web 7.0 before IF2 and 8.0 before 8.0.1.4 IF3 and Security Access Manager 9.0 before 9.0.1.0 IF5 allow remote authenticated users to execute arbitrary commands by leveraging LMI admin access.

9.1CVSS9.2AI score0.0057EPSS