Vulnerability Details CVE-2016-3023
IBM Security Access Manager for Web could allow an unauthenticated user to gain access to sensitive information by entering invalid file names.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.6%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2016-3023
-
cpe:2.3:h:ibm:security_access_manager_for_mobile_appliance:8.0
-
cpe:2.3:h:ibm:security_access_manager_for_web_appliance:7.0
-
cpe:2.3:h:ibm:security_access_manager_for_web_appliance:8.0
-
cpe:2.3:o:ibm:security_access_manager_9.0_firmware:9.0.0
-
cpe:2.3:o:ibm:security_access_manager_9.0_firmware:9.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_9.0_firmware:9.0.1.0
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.2
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.3
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.5
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.0
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.2
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.3
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.4
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.10
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.11
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.12
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.13
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.14
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.15
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.16
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.2
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.3
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.4
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.5
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.6
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.7
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.8
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.9
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.2
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.3
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.5
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.0
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.2
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.3
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.4