Tivoli Identity Manager Security Vulnerabilities and Issues — Tivoli Identity Manager CVE List

Lucene search

IbmTivoli Identity Manager

3 matches found

CVE•added 2009/07/05 4:30 p.m.•34 views

CVE-2009-2316

Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Identity Manager (ITIM) 5.0 allow remote attackers to inject arbitrary web script or HTML by entering an unspecified URL in (1) the self-service UI interface or (2) the console interface. NOTE: it was later reported that 4.6.0 is als...

4.3CVSS5.7AI score0.00599EPSS

CVE•added 2009/07/23 8:30 p.m.•34 views

CVE-2009-2583

Multiple session fixation vulnerabilities in IBM Tivoli Identity Manager (ITIM) 5.0.0.6 allow remote attackers to hijack web sessions via unspecified vectors involving the (1) console and (2) self service interfaces.

6.8CVSS6.8AI score0.01012EPSS

CVE•added 2009/09/18 9:30 p.m.•32 views

CVE-2009-3262

Cross-site scripting (XSS) vulnerability in the Self Service UI (SSUI) in IBM Tivoli Identity Manager (ITIM) 5.0.0.5 allows remote authenticated users to inject arbitrary web script or HTML via the last name field in a profile.

3.5CVSS5.1AI score0.00188EPSS