Security Identity Governance And Intelligence Security Vulnerabilities and Issues — Security Identity Governance And Intelligence CVE List

Lucene search

IbmSecurity Identity Governance And Intelligence

10 matches found

CVE•added 2020/05/28 3:15 p.m.•86 views

CVE-2020-4231

IBM Security Identity Governance and Intelligence 5.2.6 could allow an authenticated user to perform unauthorized commands due to hazardous input validation. IBM X-Force ID: 175335.

6.5CVSS6.2AI score0.00025EPSS

CVE•added 2020/05/28 3:15 p.m.•77 views

CVE-2020-4249

IBM Security Identity Governance and Intelligence 5.2.6 could disclose highly sensitive information to other authenticated users on the sytem due to incorrect authorization. IBM X-Force ID: 175485.

6.5CVSS6AI score0.00143EPSS

CVE•added 2019/02/21 5:29 p.m.•64 views

CVE-2018-1945

IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click ac...

6.1CVSS6.4AI score0.00149EPSS

CVE•added 2019/02/21 5:29 p.m.•57 views

CVE-2018-1947

IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

6.1CVSS5.8AI score0.00131EPSS

CVE•added 2018/08/06 2:29 p.m.•47 views

CVE-2017-1368

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie wil...

6.5CVSS6.2AI score0.00217EPSS

CVE•added 2021/01/21 2:15 p.m.•46 views

CVE-2020-4968

IBM Security Identity Governance and Intelligence 5.2.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 192427.

6.5CVSS6.2AI score0.0005EPSS

CVE•added 2018/08/06 2:29 p.m.•38 views

CVE-2017-1755

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 could allow a local attacker to inject commands into malicious files that could be executed by the administrator. IBM X-Force ID: 135855.

6.7CVSS6.5AI score0.00047EPSS

CVE•added 2021/02/09 3:15 p.m.•35 views

CVE-2020-4791

IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to obtain sensitive information using main in the middle attacks due to improper certificate validation. IBM X-Force ID: 189379.

6.9CVSS4.8AI score0.0005EPSS

CVE•added 2021/02/09 3:15 p.m.•31 views

CVE-2020-4996

IBM Security Identity Governance and Intelligence 5.2.6 could allow a local user to obtain sensitive information via the capturing of screenshots of authentication credentials. IBM X-Force ID: 192913.

6.5CVSS5.1AI score0.00047EPSS

CVE•added 2021/02/09 3:15 p.m.•27 views

CVE-2020-4790

IBM Security Identity Governance and Intelligence 5.2.6 could allow a user to cause a denial of service due to improperly validating a supplied URL, rendering the application unusuable. IBM X-Force ID: 189375.

6.5CVSS6.2AI score0.00101EPSS