Security Identity Manager Security Vulnerabilities and Issues — Security Identity Manager CVE List

Lucene search

IbmSecurity Identity Manager

4 matches found

CVE•added 2019/11/20 5:15 p.m.•60 views

CVE-2019-4561

IBM Security Identity Manager 6.0.0 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to execute arbitrary code on the sys...

9.3CVSS8.7AI score0.01584EPSS

CVE•added 2017/09/28 1:29 a.m.•43 views

CVE-2017-1407

IBM Security Identity Manager Virtual Appliance 6.0 and 7.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 1273...

9CVSS8.2AI score0.03897EPSS

CVE•added 2019/01/14 2:29 p.m.•42 views

CVE-2018-1969

IBM Security Identity Manager 6.0.0 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 153750.

9.9CVSS8.8AI score0.00383EPSS

CVE•added 2020/02/04 5:15 p.m.•30 views

CVE-2019-4675

IBM Security Identity Manager 7.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 171511.

9.8CVSS9AI score0.00111EPSS