Vulnerabilities > IBM > Security Access Manager FOR WEB 8 0 Firmware > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2017-02-01	CVE-2016-3021	Information Exposure vulnerability in IBM products IBM Security Access Manager for Web could allow an authenticated attacker to obtain sensitive information from error message using a specially crafted HTTP request. network low complexity ibm CWE-200	2.7
2017-02-01	CVE-2016-3046	SQL Injection vulnerability in IBM products IBM Security Access Manager for Web is vulnerable to SQL injection. network low complexity ibm CWE-89	2.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.