Vulnerabilities > IBM > Security Access Manager 9 0 Firmware > 9.0.3.0

DATE CVE VULNERABILITY TITLE RISK
2017-11-13 CVE-2017-1477 XXE vulnerability in IBM Security Access Manager 9.0 Firmware 9.0.3.0
IBM Security Access Manager Appliance 9.0.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm CWE-611
8.1
2017-11-13 CVE-2017-1453 OS Command Injection vulnerability in IBM Security Access Manager 9.0 Firmware 9.0.3.0
IBM Security Access Manager Appliance 9.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system.
network
low complexity
ibm CWE-78
8.8