Vulnerability Details CVE-2018-1887
IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 152078.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.2%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.6
References
Products affected by CVE-2018-1887
-
cpe:2.3:a:ibm:security_access_manager:9.0.1.0
-
cpe:2.3:a:ibm:security_access_manager:9.0.1.03
-
cpe:2.3:a:ibm:security_access_manager:9.0.2
-
cpe:2.3:a:ibm:security_access_manager:9.0.2.0
-
cpe:2.3:a:ibm:security_access_manager:9.0.2.1
-
cpe:2.3:a:ibm:security_access_manager:9.0.3
-
cpe:2.3:a:ibm:security_access_manager:9.0.3.0
-
cpe:2.3:a:ibm:security_access_manager:9.0.3.1
-
cpe:2.3:a:ibm:security_access_manager:9.0.4
-
cpe:2.3:a:ibm:security_access_manager:9.0.4.0
-
cpe:2.3:a:ibm:security_access_manager:9.0.5