CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-4499

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an unauthorized public Oauth client to bypass some or all of the authentication checks and gain access to applications. IBM X-Force ID: 182216.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.6%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/182216
https://www.ibm.com/support/pages/node/6348046
https://exchange.xforce.ibmcloud.com/vulnerabilities/182216
https://www.ibm.com/support/pages/node/6348046

Products affected by CVE-2020-4499

Ibm » Security Access Manager » Version: 9.0.7.0

cpe:2.3:a:ibm:security_access_manager:9.0.7.0
Ibm » Security Access Manager » Version: 9.0.7.1

cpe:2.3:a:ibm:security_access_manager:9.0.7.1
Ibm » Security Verify Access » Version: 10.0.0

cpe:2.3:a:ibm:security_verify_access:10.0.0
Ibm » Security Verify Access » Version: 10.0.0.0

cpe:2.3:a:ibm:security_verify_access:10.0.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4499

Products

Pricing

Contact Us