Vulnerabilities > IBM > Security Access Manager > 9.0.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-06 | CVE-2019-4725 | Cross-site Scripting vulnerability in IBM Security Access Manager IBM Security Access Manager Appliance 9.0 is vulnerable to cross-site scripting. | 6.1 |
| 2020-05-20 | CVE-2020-4461 | Unspecified vulnerability in IBM Security Access Manager IBM Security Access Manager Appliance 9.0.7.1 could allow an authenticated user to bypass security by allowing id_token claims manipulation without verification. | 6.5 |