Information Disclosure Vulnerability in IBM Security Access Manager
CVE-2018-1886

5.3MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
13 December 2018

Summary

The IBM Security Access Manager Appliance versions 9.0.1.0 through 9.0.5.0 are susceptible to an information disclosure vulnerability, which can expose sensitive data to unauthorized users. This unauthorized access may allow attackers to leverage the disclosed information to execute further attacks against the system. Organizations using these affected versions should review their security measures and consider applying necessary patches to protect against this vulnerability.

Affected Version(s)

Security Access Manager Appliance 9.0.1.0

Security Access Manager Appliance 9.0.2.0

Security Access Manager Appliance 9.0.3.0

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.