Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe

Filtered by product Security Privileged Identity Manager Virtual Appliance

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-5957	1 Ibm	1 Security Privileged Identity Manager Virtual Appliance	2016-11-28	5.0 MEDIUM	7.5 HIGH
IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x before 2.0.2 FP8 allows remote attackers to defeat cryptographic protection mechanisms and obtain sensitive information by leveraging a weak algorithm.
CVE-2016-5963	1 Ibm	1 Security Privileged Identity Manager Virtual Appliance	2016-11-28	6.5 MEDIUM	8.8 HIGH
IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x before 2.0.2 FP8 does not properly validate updates, which allows remote authenticated users to execute arbitrary code via unspecified vectors.
CVE-2016-5971	1 Ibm	1 Security Privileged Identity Manager Virtual Appliance	2016-11-28	5.5 MEDIUM	7.1 HIGH
IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x before 2.0.2 FP8 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.