Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access manager vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-1850
IBM Security Access Manager Appliance 9.0.3.1, 9.0.4.0 and 9.0.5.0 could allow unauthorized administration operations when Advanced Access Control services are running. IBM X-Force ID: 150998.
Ibm Security Access Manager 9.0.5.0
Ibm Security Access Manager 9.0.4.0
Ibm Security Access Manager 9.0.3.1
NA
CVE-2010-3018
RSA Access Manager Server 5.5.3 prior to 5.5.3.172, 6.0.4 prior to 6.0.4.53, and 6.1 prior to 6.1.2.01 does not properly perform cache updates, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Rsa Access Manager Server 6.0.4
Rsa Access Manager Server 5.5.3
Rsa Access Manager Server 6.1
9.4
CVSSv3
CVE-2019-6716
An unauthenticated Insecure Direct Object Reference (IDOR) in Wicket Core in LogonBox Nervepoint Access Manager 2013 through 2017 allows a remote malicious user to enumerate internal Active Directory usernames and group names, and alter back-end server jobs (backup and synchroniz...
Logonbox Nervepoint Access Manager 1.2
Logonbox Nervepoint Access Manager 1.3
Logonbox Nervepoint Access Manager 1.4
2 Github repositories
8.8
CVSSv3
CVE-2011-5328
The user-access-manager plugin prior to 1.2 for WordPress has CSRF.
User Access Manager Project User Access Manager
6.1
CVSSv3
CVE-2018-17948
An open redirect vulnerability exists in the Access Manager Identity Provider before 4.4 SP3.
Microfocus Access Manager 4.4
Microfocus Access Manager
NA
CVE-2009-4878
Unspecified vulnerability in the Administration Console in Novell Access Manager prior to 3.1 SP1 allows malicious users to access system files via unknown attack vectors.
Novell Access Manager
Novell Access Manager 3
NA
CVE-2009-4879
The Identity Server in Novell Access Manager prior to 3.1 SP1 allows attackers with disabled Active Directory accounts to authenticate using X.509 authentication, which bypasses intended access restrictions.
Novell Access Manager 3
Novell Access Manager
NA
CVE-2007-0628
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 (6.3), and 7 2005Q4 (7.0) prior to 20070129 allow remote malicious users to inject arbitrary web script or HTML via the (1) goto or (2) gx-charset parameter. NOTE: some of the...
Sun Java System Access Manager 7.0
Sun Java System Access Manager 6.2
Sun Java System Access Manager 6.3
Sun Java System Access Manager 6.1
5.9
CVSSv3
CVE-2017-1476
IBM Security Access Manager Appliance 7.0.0, 8.0.0 up to and including 8.0.1.6, and 9.0.0 up to and including 9.0.3.1 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could ex...
Ibm Security Access Manager
Ibm Security Access Manager For Web
Ibm Security Access Manager For Mobile
5.3
CVSSv3
CVE-2017-1474
IBM Security Access Manager Appliance 7.0.0, 8.0.0 up to and including 8.0.1.6, and 9.0.0 up to and including 9.0.3.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 128606.
Ibm Security Access Manager
Ibm Security Access Manager For Mobile
Ibm Security Access Manager For Web
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »