IBM Security Identity Manager Virtual Appliance 6.0/7.0 Request command injection

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as critical was found in IBM Security Identity Manager Virtual Appliance 6.0/7.0 (Access Management Software). This vulnerability affects some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1082023901/14/2021VulD...person_nameIBM X-Force Ethical Hacking Team: Ron Craig/Warren Moynihan/Jonathan Fitz-Gerald/John Zuccato/Rodney Ryan/Chris Shepherd/Dmitriy Beryoza.securityfocus.com01/14/2021accepted70
1082023801/14/2021VulD...cvss2_nvd_basescore9.0nist.gov01/14/2021accepted90
1082023701/14/2021VulD...xforce127394cve.mitre.org01/14/2021accepted70
714395511/20/2019VulD...securityfocus_classUnknownsecurityfocus.com11/20/2019accepted100
714395411/20/2019VulD...securityfocus_date1506297600 (09/25/2017)securityfocus.com11/20/2019accepted100
714394611/20/2019VulD...confirm_urlhttp://www.ibm.com/support/docview.wss?uid=swg22007377ibm.com11/20/2019accepted100
714394511/20/2019VulD...company_nameIBM X-Force11/20/2019accepted100
714394411/20/2019VulD...person_nicknameryan11/20/2019accepted100
714390511/20/2019VulD...discoverydate150629760011/20/2019accepted100
714396509/28/2017VulD...cvss3_nvd_basescore8.8nist.gov09/28/2017accepted90
714396409/28/2017VulD...0day_days209/28/2017accepted90
714396309/28/2017VulD...cvss3_vuldb_rcX09/28/2017accepted90
714396209/28/2017VulD...cvss3_vuldb_rlX09/28/2017accepted90
714396109/28/2017VulD...cvss3_vuldb_eX09/28/2017accepted90
714396009/28/2017VulD...cvss2_vuldb_rcND09/28/2017accepted90
714395909/28/2017VulD...cvss2_vuldb_rlND09/28/2017accepted90
714395809/28/2017VulD...cvss2_vuldb_eND09/28/2017accepted90
714395709/28/2017VulD...locationWebsite09/28/2017accepted90
714395609/28/2017VulD...securityfocus_titleIBM Security Identity Manager Virtual Appliance Arbitrary Command Execution Vulnerabilitysecurityfocus.com09/28/2017accepted100
714395309/28/2017VulD...securityfocus101015securityfocus.com09/28/2017accepted100

Interested in the pricing of exploits?

See the underground prices here!