Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe

Filtered by product Security Privileged Identity Manager

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-1623	1 Ibm	1 Security Privileged Identity Manager	2019-10-09	2.1 LOW	3.3 LOW
IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 144408.
CVE-2016-0366	1 Ibm	1 Security Privileged Identity Manager	2018-03-12	4.3 MEDIUM	3.7 LOW
IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 might allow remote attackers to obtain sensitive information by leveraging weak encryption. IBM X-Force ID: 112071.
CVE-2016-0353	1 Ibm	1 Security Privileged Identity Manager	2016-11-28	4.3 MEDIUM	3.7 LOW
IBM Security Privileged Identity Manager 2.0 before 2.0.2 FP8, when Virtual Appliance is used, does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.