Vulnerabilities > CVE-2016-9739 - Credentials Management vulnerability in IBM Security Identity Manager

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

NVD

Published: 2017-02-01

Updated: 2018-05-02

Summary

IBM Security Identity Manager Virtual Appliance stores user credentials in plain in clear text which can be read by a local user.

Part	Description	Count
Application	Ibm IBM Security Identity Manager 7.0.0.0 IBM Security Identity Manager 7.0.0.1 IBM Security Identity Manager 7.0.0.2 IBM Security Identity Manager 7.0.0.3 IBM Security Identity Manager 7.0.1.0 IBM Security Identity Manager 7.0.1.1 IBM Security Identity Manager 7.0.1.2 IBM Security Identity Manager 7.0.1.3 IBM Security Identity Manager 7.0.1.4	9