Ibm: >> Security Access Manager >> 9.0 Security Vulnerabilities
IBM Security Access Manager 9.0 and IBM Security Verify Access Docker 10.0.0 stores user credentials in plain clear text which can be read by an unauthorized user.
CVSS Score
7.5
EPSS Score
0.002
Published
2021-07-15
IBM Security Access Manager Appliance 9.0.7.1 could allow an authenticated user to bypass security by allowing id_token claims manipulation without verification. IBM X-Force ID: 181481.
CVSS Score
6.5
EPSS Score
0.002
Published
2020-05-20
IBM Security Access Manager Appliance could allow unauthenticated attacker to cause a denial of service in the reverse proxy component. IBM X-Force ID: 156159.
CVSS Score
7.5
EPSS Score
0.005
Published
2019-10-25
IBM Security Access Manager Appliance 9.0.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 128613.
CVSS Score
3.3
EPSS Score
0.001
Published
2018-01-11