Skip to main content

Security Access Manager For Mobile Appliance

4 CVEs product

Monthly

CVE-2014-6079 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Local Management Interface in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, and Security. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

IBM XSS Security Access Manager For Mobile 8 0 Firmware Security Access Manager For Mobile Appliance Security Access Manager For Web 7 0 Firmware +2
NVD
CVSS 2.0
4.3
EPSS
0.5%
CVE-2014-4823 CRITICAL PATCH Act Now

The administration console in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, and Security Access Manager for Mobile 8.x before. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

IBM Command Injection Security Access Manager For Web 7 0 Firmware Security Access Manager For Web Appliance Security Access Manager For Web 8 0 Firmware +2
NVD
CVSS 2.0
10.0
EPSS
6.5%
CVE-2014-3073 CRITICAL Act Now

Unspecified vulnerability in IBM Security Access Manager (ISAM) for Mobile 8.0 and IBM Security Access Manager for Web 7.0 and 8.0 allows remote attackers to execute arbitrary code via unknown. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 10.2% and no vendor patch available.

IBM RCE Security Access Manager For Mobile Software Security Access Manager For Web Software Security Access Manager For Mobile Appliance +1
NVD
CVSS 2.0
10.0
EPSS
10.2%
CVE-2014-3053 HIGH This Week

The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 through 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

IBM Authentication Bypass Security Access Manager For Web 8 0 Firmware Security Access Manager For Web Appliance Security Access Manager For Mobile Software +2
NVD
CVSS 2.0
8.0
EPSS
0.6%
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Local Management Interface in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, and Security. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

IBM XSS Security Access Manager For Mobile 8 0 Firmware +4
NVD
EPSS 6% CVSS 10.0
CRITICAL PATCH Act Now

The administration console in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, and Security Access Manager for Mobile 8.x before. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

IBM Command Injection Security Access Manager For Web 7 0 Firmware +4
NVD
EPSS 10% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability in IBM Security Access Manager (ISAM) for Mobile 8.0 and IBM Security Access Manager for Web 7.0 and 8.0 allows remote attackers to execute arbitrary code via unknown. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 10.2% and no vendor patch available.

IBM RCE Security Access Manager For Mobile Software +3
NVD
EPSS 1% CVSS 8.0
HIGH This Week

The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 through 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

IBM Authentication Bypass Security Access Manager For Web 8 0 Firmware +4
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy