Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security privileged identity manager 2.0.2 vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv2
CVE-2016-3040
IBM WebSphere Application Server (WAS) Liberty, as used in IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x prior to 2.0.2 FP8, allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Ibm Security Privileged Identity Manager Virtual Appliance 2.0
4.3
CVSSv2
CVE-2016-5966
IBM Security Privileged Identity Manager Virtual Appliance could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information us...
Ibm Security Privileged Identity Manager 2.0.2
Ibm Security Privileged Identity Manager 2.1
4.3
CVSSv2
CVE-2016-0353
IBM Security Privileged Identity Manager 2.0 prior to 2.0.2 FP8, when Virtual Appliance is used, does not set the secure flag for the session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission withi...
Ibm Security Privileged Identity Manager 2.0.2
Ibm Security Privileged Identity Manager 2.0.0
Ibm Security Privileged Identity Manager 2.0.1
4
CVSSv2
CVE-2016-5988
IBM Security Privileged Identity Manager Virtual Appliance could disclose sensitive information in generated error messages that would be available to an authenticated user.
Ibm Security Privileged Identity Manager 2.0.2
Ibm Security Privileged Identity Manager 2.1
4
CVSSv2
CVE-2016-2996
IBM Security Privileged Identity Manager 2.0 prior to 2.0.2 FP8, when Virtual Appliance is used, allows remote authenticated users to append to arbitrary files via unspecified vectors.
Ibm Security Privileged Identity Manager 2.0.2
Ibm Security Privileged Identity Manager 2.0.0
Ibm Security Privileged Identity Manager 2.0.1
4
CVSSv2
CVE-2016-5970
Directory traversal vulnerability in IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x prior to 2.0.2 FP8 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.
Ibm Security Privileged Identity Manager Virtual Appliance
3.5
CVSSv2
CVE-2016-5974
Cross-site scripting (XSS) vulnerability in the Web UI in IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x prior to 2.0.2 FP8 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string.
Ibm Security Privileged Identity Manager Virtual Appliance
2.1
CVSSv2
CVE-2016-5960
IBM Security Privileged Identity Manager 2.0.2 and 2.1.0 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 116171.
Ibm Security Privileged Identity Manager 2.0.2
Ibm Security Privileged Identity Manager 2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2