Skip to main content
CVE-2014-3073 CRITICAL Act Now

Unspecified vulnerability in IBM Security Access Manager (ISAM) for Mobile 8.0 and IBM Security Access Manager for Web 7.0 and 8.0 allows remote attackers to execute arbitrary code via unknown. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 10.2% and no vendor patch available.

IBM RCE Security Access Manager For Mobile Software Security Access Manager For Web Software Security Access Manager For Mobile Appliance +1
NVD
CVSS 2.0
10.0
EPSS
10.2%
CVE-2014-3053 HIGH This Week

The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 through 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

IBM Authentication Bypass Security Access Manager For Web 8 0 Firmware Security Access Manager For Web Appliance Security Access Manager For Mobile Software +2
NVD
CVSS 2.0
8.0
EPSS
0.6%
CVE-2014-3883 MEDIUM This Month

Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via unspecified vectors related to a user action. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Command Injection Usermin
NVD
CVSS 2.0
6.8
EPSS
0.5%
CVE-2014-4509 MEDIUM PATCH This Month

The MKDQUOTESAFE function in the Fan-out driver scripts in Fan-Out Platform Services in Novell Identity Manager (aka IDM) 4.0.2 allows local users to execute arbitrary commands by leveraging. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity.

Information Disclosure Identity Manager
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2014-3431 MEDIUM This Month

Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x before 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended. Rated medium severity (CVSS 4.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Encryption Desktop Pgp Desktop
NVD
CVSS 2.0
4.3
EPSS
0.0%
CVE-2013-6737 MEDIUM This Month

IBM System Storage Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.0 does not properly restrict the content of a dump file upon encountering a 1691 hardware fault, which allows remote. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Privilege Escalation Storwize Unified V7000 Software Storwize Unified V7000
NVD
CVSS 2.0
4.0
EPSS
0.3%
CVE-2014-3296 MEDIUM This Month

The XML programmatic interface (XML PI) in Cisco WebEx Meeting Server 1.5(.1.131) and earlier allows remote authenticated users to obtain sensitive meeting information via a crafted URL, aka Bug ID. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Information Disclosure Webex Meetings Server
NVD
CVSS 2.0
4.0
EPSS
0.3%
CVE-2014-3052 LOW Monitor

The reverse-proxy feature in IBM Security Access Manager (ISAM) for Web 8.0 with firmware 8.0.0.2 and 8.0.0.3 interprets the jct-nist-compliance parameter in the opposite of the intended manner,. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Security Access Manager For Web 8 0 Firmware Security Access Manager For Web Appliance
NVD
CVSS 2.0
3.3
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy