Security Access Manager Appliance Security Vulnerabilities and Issues — Security Access Manager Appliance CVE List

Lucene search

IbmSecurity Access Manager Appliance

3 matches found

CVE•added 2018/12/13 4:29 p.m.•47 views

CVE-2018-1814

IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 150018.

7.5CVSS7.6AI score0.00112EPSS

CVE•added 2020/01/28 7:15 p.m.•38 views

CVE-2019-4707

IBM Security Access Manager Appliance 9.0.7.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 172018.

7.1CVSS6.8AI score0.00604EPSS

CVE•added 2018/12/13 4:29 p.m.•34 views

CVE-2018-1887

IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Forc...

7.8CVSS8AI score0.00016EPSS