Vulnerabilities > IBM > Security Privileged Identity Manager > 2.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-02-21	CVE-2016-0366	Information Exposure vulnerability in IBM Security Privileged Identity Manager 2.0 IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 might allow remote attackers to obtain sensitive information by leveraging weak encryption. network ibm CWE-200	4.3
2017-09-28	CVE-2017-1483	Missing Authentication for Critical Function vulnerability in IBM products IBM Security Identity Manager Adapters 6.0 and 7.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. network low complexity ibm CWE-306	7.5
2017-09-28	CVE-2017-1407	Command Injection vulnerability in IBM products IBM Security Identity Manager Virtual Appliance 6.0 and 7.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. network low complexity ibm CWE-77 critical	9.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.