Ibm Security Access Manager Luki w zabezpieczeniach

Oś czasu

Wersja

9.0.3.014
9.0.313
9.0.4.012
9.0.5.012
9.0.1.011

Przeciwdziałanie

Official Fix41
Temporary Fix0
Workaround0
Unavailable0
Not Defined61

Wykorzystywanie

High4
Functional0
Proof-of-Concept0
Unproven5
Not Defined93

Wektor dostępu

Not Defined0
Physical0
Local7
Adjacent3
Network92

Uwierzytelnianie

Not Defined0
High4
Low38
None60

Interakcja z użytkownikiem

Not Defined0
Required18
None84

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤46
≤524
≤634
≤719
≤812
≤93
≤104

CVSSv3 Temp

≤10
≤20
≤30
≤47
≤524
≤635
≤719
≤811
≤95
≤101

VulDB

≤10
≤20
≤30
≤415
≤527
≤624
≤716
≤815
≤92
≤103

NVD

≤10
≤20
≤32
≤44
≤56
≤618
≤717
≤816
≤97
≤103

CNA

≤10
≤20
≤30
≤41
≤54
≤612
≤78
≤87
≤93
≤101

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k0
<5k7
<10k42
<25k48
<50k5
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k38
<2k6
<5k26
<10k24
<25k8
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Versions (58): 1, 6.1, 6.1.1, 7, 7.0, 7.0.0 FP18, 7.0.0 IF2, 7.0.0 IF18, 7.0.0.1, 7.0.0.2, 7.0.0.3, 7.0.0.4, 7.0.0.5, 7.0.0.6, 7.0.0.7, 7.0.0.8, 7.0.0.9, 7.0.0.11, 7.0.0.12, 7.0.0.13, 7.0.0.14, 7.0.0.15, 8, 8.0, 8.0.0.1, 8.0.0.2, 8.0.0.3, 8.0.0.4, 8.0.0.5, 8.0.1, 8.0.1.1, 8.0.1.2, 8.0.1.3, 8.0.1.3 IF2, 8.0.1.3 IF3, 8.0.1.4, 8.0.1.5, 8.0.1.6, 8.1, 8.2.2, 9, 9.0, 9.0.0.1, 9.0.1, 9.0.2, 9.0.2.1, 9.0.3, 9.0.3.1, 9.0.4, 9.0.5, 9.0.6, 9.0.7, 9.0.7.1, 10.0.1, 10.0.2, 10.0.3, 10.0.6, 10.0.6.1

Link to Product Website: https://www.ibm.com/

Typ oprogramowania: Network Authentication Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2024-02-035.85.7IBM Security Access Manager Container Security Configuration privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-31005
2024-02-036.76.5IBM Security Access Manager Container XML External Entity$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-32327
2024-02-037.57.3IBM Security Access Manager Container denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-30999
2024-02-035.25.2IBM Security Access Manager Container File weak authentication$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-32329
2024-02-036.86.7IBM Security Access Manager Container DSC Server denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-31006
2024-02-037.37.1IBM Security Access Manager Container Remote Code Execution$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-43016
2024-02-038.38.2IBM Security Access Manager Container privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-31004
2022-07-096.86.7IBM Security Access Manager Appliance Permissions privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-22465
2022-07-095.75.7IBM Security Access Manager Appliance weak encryption$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-22464
2022-07-095.55.5IBM Security Access Manager Appliance sql injection$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-22463
2021-07-165.35.1IBM Security Access Manager weak encryption$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-20439
2020-10-158.58.5IBM Security Access Manager/Security Verify Access weak authentication$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2020-4499
2020-10-156.26.2IBM Security Access Manager/Security Verify Access privilege escalation$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2019-4552
2020-10-154.24.2IBM Security Access Manager Appliance weak authentication$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2020-4395
2020-10-124.84.8IBM Security Access Manager/Security Verify Access information disclosure$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2020-4699
2020-10-124.84.8IBM Security Access Manager/Security Verify Access information disclosure$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2020-4661
2020-10-124.84.8IBM Security Access Manager/Security Verify Access Access Manager information disclosure$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2020-4660
2020-10-064.84.8IBM Security Access Manager Appliance Web UI cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2019-4725
2020-05-206.46.4IBM Security Access Manager Appliance privilege escalation$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2020-4461
2020-01-286.86.8IBM Security Access Manager Appliance XML Data XML External Entity$5k-$25k$5k-$25kNot DefinedNot Defined0.05CVE-2019-4707
2019-10-256.86.8IBM Security Access Manager Appliance Reverse Proxy privilege escalation$5k-$25k$5k-$25kNot DefinedNot Defined0.02CVE-2019-4036
2019-08-267.97.9IBM Security Access Manager for Enterprise Single Sign-On XML Data XML External Entity$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2019-4513
2019-06-255.75.7IBM Security Access Manager privilege escalation$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2019-4158
2019-06-255.55.5IBM Security Access Manager Web UI cross site scripting$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2019-4157
2019-06-255.75.7IBM Security Access Manager information disclosure$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2019-4156

77 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 77 results.

więcej wpisów autorstwa Ibm

PoprzedniPrzeglądKolejny

Do you know our Splunk app?

Download it now for free!