IBM Security Access Manager for Web 7.0.0.6

CPE Details

IBM Security Access Manager for Web 7.0.0.6
ibm
security_access_manager_for_web
7.0.0.6
2019-10-29
19h21 +00:00
2019-10-29
19h21 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:security_access_manager_for_web:7.0.0.6:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

security_access_manager_for_web

Version

7.0.0.6

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-1474 2018-06-06 17h00 +00:00 IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 128606.
5.3
Medium
CVE-2017-1476 2018-06-06 17h00 +00:00 IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 128610.
5.9
Medium
CVE-2015-4963 2015-11-08 21h00 +00:00 IBM Security Access Manager for Web 7.x before 7.0.0.16 and 8.x before 8.0.1.3 mishandles WebSEAL HTTPTransformation requests, which allows remote attackers to read or write to arbitrary files via unspecified vectors.
7.5