Information Disclosure Vulnerability in IBM Security Access Manager
CVE-2018-1886
5.3MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 13 December 2018
Summary
The IBM Security Access Manager Appliance versions 9.0.1.0 through 9.0.5.0 are susceptible to an information disclosure vulnerability, which can expose sensitive data to unauthorized users. This unauthorized access may allow attackers to leverage the disclosed information to execute further attacks against the system. Organizations using these affected versions should review their security measures and consider applying necessary patches to protect against this vulnerability.
Affected Version(s)
Security Access Manager Appliance 9.0.1.0
Security Access Manager Appliance 9.0.2.0
Security Access Manager Appliance 9.0.3.0
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved