Security Identity Manager Security Vulnerabilities and Issues — Security Identity Manager CVE List

Lucene search

IbmSecurity Identity Manager

5 matches found

CVE•added 2017/09/28 1:29 a.m.•58 views

CVE-2017-1483

IBM Security Identity Manager Adapters 6.0 and 7.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 128621.

8.6CVSS8.3AI score0.00523EPSS

CVE•added 2021/05/20 3:15 p.m.•38 views

CVE-2021-29686

IBM Security Identity Manager 7.0.2 could allow an authenticated user to bypass security and perform actions that they should not have access to. IBM X-Force ID: 200015

8.8CVSS8.5AI score0.00167EPSS

CVE•added 2018/01/12 5:29 p.m.•37 views

CVE-2016-0335

Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors. IBM X-Force ID: ...

8.8CVSS8.8AI score0.00101EPSS

CVE•added 2018/06/08 1:29 p.m.•37 views

CVE-2018-1453

IBM Security Identity Manager Virtual Appliance 7.0 allows an authenticated attacker to upload or transfer files of dangerous types that can be automatically processed within the environment. IBM X-Force ID: 140055.

8.8CVSS7.9AI score0.00396EPSS

CVE•added 2017/09/18 3:29 p.m.•34 views

CVE-2014-6106

Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of users for requests that can cause cross-site scripting attacks, web cache poisoning, or other unspecified impacts via unknown vectors.

8.8CVSS8.5AI score0.00109EPSS