IBM Security Identity Manager Adapter (ISIM) 7.0.1.0

CPE Details

IBM Security Identity Manager Adapter (ISIM) 7.0.1.0
ibm
security_identity_manager_adapter
7.0.1.0
2020-08-25
13h25 +00:00
2020-08-25
13h25 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:security_identity_manager_adapter:7.0.1.0:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

security_identity_manager_adapter

Version

7.0.1.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-0330 2016-07-15 16h00 +00:00 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles password creation, which makes it easier for remote attackers to obtain access by leveraging an attack against the password algorithm.
7.3
High
CVE-2016-0338 2016-07-15 16h00 +00:00 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows local users to discover cleartext passwords by (1) reading a configuration file or (2) examining a process.
6.2
Medium
CVE-2016-0339 2016-07-15 16h00 +00:00 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session identifiers after logout, which makes it easier for remote attackers to spoof users by leveraging knowledge of "traffic records."
5.6
Medium
CVE-2016-0340 2016-07-15 16h00 +00:00 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session expiration, which allows remote attackers to hijack sessions by leveraging an unattended workstation.
7.4
High
CVE-2016-0357 2016-07-15 16h00 +00:00 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows remote attackers to conduct clickjacking attacks via a crafted web site.
4.3
Medium