Security Identity Manager Adapter Security Vulnerabilities and Issues — Security Identity Manager Adapter CVE List

Lucene search

IbmSecurity Identity Manager Adapter

9 matches found

CVE•added 2016/07/15 6:59 p.m.•39 views

CVE-2016-0340

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session expiration, which allows remote attackers to hijack sessions by leveraging an unattended workstation.

7.4CVSS8.2AI score0.00489EPSS

CVE•added 2021/06/28 4:15 p.m.•36 views

CVE-2021-20573

IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the server to crash. IBM X-Force ID: 199249.

6.5CVSS6.3AI score0.00543EPSS

CVE•added 2021/06/28 4:15 p.m.•35 views

CVE-2021-20574

IBM Security Identity Manager Adapters 6.0 and 7.0 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and takeover other accounts. IBM X-Force ID: 199252.

8.8CVSS8.2AI score0.01304EPSS

CVE•added 2016/07/15 6:59 p.m.•33 views

CVE-2016-0339

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session identifiers after logout, which makes it easier for remote attackers to spoof users by leveraging knowledge of "traffic records."

5.6CVSS7AI score0.00347EPSS

CVE•added 2021/06/28 4:15 p.m.•32 views

CVE-2021-20572

IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the server to crash. IBM X-Force ID: 199247.

6.5CVSS6.3AI score0.00543EPSS

CVE•added 2021/06/28 4:15 p.m.•30 views

CVE-2021-20494

IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap based buffer overflow, caused by improper bounds. An authenticared user could overflow the buffer and cause the service to crash. IBM X-Force ID: 197882.

6.5CVSS6.5AI score0.00275EPSS

CVE•added 2016/07/15 6:59 p.m.•29 views

CVE-2016-0330

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles password creation, which makes it easier for remote attackers to obtain access by leveraging an attack against the password algorithm.

7.3CVSS8.1AI score0.00352EPSS

CVE•added 2016/07/15 6:59 p.m.•28 views

CVE-2016-0357

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows remote attackers to conduct clickjacking attacks via a crafted web site.

4.3CVSS5.2AI score0.00304EPSS

CVE•added 2016/07/15 6:59 p.m.•24 views

CVE-2016-0338

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows local users to discover cleartext passwords by (1) reading a configuration file or (2) examining a process.

6.2CVSS7.2AI score0.00122EPSS