9.0.5.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

ibm

critical

NVD

Published: 2018-08-24

Updated: 2019-10-09

Summary

IBM Security Access Manager Appliance 9.0.4.0 and 9.0.5.0 could allow remote code execution when Advanced Access Control or Federation services are running. IBM X-Force ID: 147370.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Security Access Manager 9.0.5.0 IBM Security Access Manager 9.0.4.0	2

References

https://www.ibm.com/support/docview.wss?uid=ibm10719623
https://exchange.xforce.ibmcloud.com/vulnerabilities/147370
http://www.securitytracker.com/id/1041557
http://www.securityfocus.com/bid/105145