File Manipulation Flaw in IBM Security Access Manager for Web
CVE-2015-4963

Currently unrated

Key Information:

Vendor
IBM
Vendor
CVE Published:
8 November 2015

Summary

A vulnerability in IBM Security Access Manager for Web allows unauthorized access through mishandling of WebSEAL HTTPTransformation requests, enabling remote attackers to read or write arbitrary files. This flaw impacts versions 7.x prior to 7.0.0.16 and 8.x prior to 8.0.1.3, creating opportunities for data breaches and unauthorized modifications.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.