Tivoli Access Manager For E-business Security Vulnerabilities and Issues — Tivoli Access Manager For E-business CVE List

Lucene search

IbmTivoli Access Manager For E-business

3 matches found

CVE•added 2010/12/30 7:0 p.m.•44 views

CVE-2010-4622

Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1 before 6.1.1-TIV-AWS-FP0001 on AIX allows remote attackers to read arbitrary files via a %uff0e%uff0e (encoded dot dot) in a URI.

5CVSS6.5AI score0.00369EPSS

CVE•added 2010/10/28 9:0 p.m.•29 views

CVE-2010-4120

Multiple cross-site scripting (XSS) vulnerabilities in the TAM console in IBM Tivoli Access Manager for e-business 6.1.0 before 6.1.0-TIV-TAM-FP0006 allow remote attackers to inject arbitrary web script or HTML via (1) the parm1 parameter to ivt/ivtserver, or the method parameter to (2) acl, (3) do...

4.3CVSS5.7AI score0.04181EPSS

CVE•added 2010/12/30 7:0 p.m.•29 views

CVE-2010-4623

WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1 before 6.1.1-TIV-AWS-FP0001 allows remote authenticated users to cause a denial of service (worker thread consumption) via shift-reload actions.

4CVSS6.2AI score0.00374EPSS