CVE-2017-1477 in Security Access Managerinfo

Summary

IBM Security Access Manager Appliance 9.0.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 128612.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/30/2016

Disclosure

11/13/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
109319	IBM Security Access Manager XML Data xml external entity reference	611	Not defined	Not defined	CVE-2017-1477

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Might our Artificial Intelligence support you?

Check our Alexa App!