Security Access Manager@9.0.3 Security Vulnerabilities and Issues — Security Access Manager@9.0.3 CVE List

Lucene search

IbmSecurity Access Manager9.0.3

3 matches found

CVE•added 2017/11/13 11:29 p.m.•40 views

CVE-2017-1453

IBM Security Access Manager Appliance 9.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 128372.

9CVSS8.5AI score0.04969EPSS

CVE•added 2017/11/13 11:29 p.m.•39 views

CVE-2017-1477

IBM Security Access Manager Appliance 9.0.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 128612.

8.1CVSS7.8AI score0.00583EPSS

CVE•added 2017/06/07 5:29 p.m.•35 views

CVE-2016-3019

IBM Security Access Manager for Web 9.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 114462.

6.5CVSS6.2AI score0.0013EPSS