Vulnerabilities > IBM > Security Access Manager FOR WEB 8 0 Firmware > 8.0.1.3

DATE CVE VULNERABILITY TITLE RISK
2016-01-02 CVE-2015-5018 OS Command Injection vulnerability in IBM products
IBM Security Access Manager for Web 7.0.0 before FP19 and 8.0 before 8.0.1.3 IF3, and Security Access Manager 9.0 before 9.0.0.0 IF1, allows remote authenticated users to execute arbitrary OS commands by leveraging Local Management Interface (LMI) access.
network
high complexity
ibm CWE-78
8.0
8.0