IBM Security Identity Manager 6.0.0.8

CPE Details

IBM Security Identity Manager 6.0.0.8
ibm
security_identity_manager
6.0.0.8
2021-05-24
14h33 +00:00
2021-06-04
17h17 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:ibm:security_identity_manager:6.0.0.8:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

security_identity_manager

Version

6.0.0.8

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2019-4451 2020-02-04 16h45 +00:00 IBM Security Identity Manager 6.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 163493.
5.4
Moyen
CVE-2019-4038 2019-02-04 21h00 +00:00 IBM Security Identity Manager 6.0 and 7.0 could allow an attacker to create unexpected control flow paths through the application, potentially bypassing security checks. Exploitation of this weakness can result in a limited form of code injection. IBM X-Force ID: 156162.
6.2
Moyen
CVE-2018-1956 2019-01-14 14h00 +00:00 IBM Security Identity Manager 6.0.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 153628.
7.5
Haute
CVE-2018-1967 2019-01-14 14h00 +00:00 IBM Security Identity Manager 6.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 153748.
6.1
Moyen
CVE-2018-1969 2019-01-14 14h00 +00:00 IBM Security Identity Manager 6.0.0 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 153750.
9.9
Critique