Vulnerabilities > IBM > Security Access Manager FOR WEB 7 0 Firmware > 7.0.0.20

DATE CVE VULNERABILITY TITLE RISK
2016-02-15 CVE-2015-5010 7PK - Security Features vulnerability in IBM products
IBM Security Access Manager for Web 7.0 before 7.0.0 IF21, 8.0 before 8.0.1.3 IF4, and 9.0 before 9.0.0.1 IF1 does not have a lockout mechanism for invalid login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
network
low complexity
ibm CWE-254
7.5
7.5