Sun Java System Identity Manager (IdM) 7.0 up to and including 8.0 does not properly restrict access to the System Configuration object, which allows remote authenticated administrators and possibly remote malicious users to have an unspecified impact by modifying this object.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java system identity manager 7.0 |
||
sun java system identity manager 7.1 |
||
sun java system identity manager 7.1.1 |
||
sun java system identity manager 8.0 |