Search Results | AttackerKB

Show filters

Topics 93 Users 9,733

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

93 Total Results

Displaying 51-60 of 93

Attacker Value

Unknown

CVE-2016-0367

Disclosure Date: February 21, 2018 (last updated November 26, 2024)

IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Force ID: 112072.

0

Attacker Value

Unknown

CVE-2016-0336

Disclosure Date: January 12, 2018 (last updated November 26, 2024)

Cross-site scripting (XSS) vulnerability in IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 111737.

0

Attacker Value

Unknown

CVE-2016-0335

Disclosure Date: January 12, 2018 (last updated November 26, 2024)

Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors. IBM X-Force ID: 111736.

0

Attacker Value

Unknown

CVE-2016-0324

Disclosure Date: January 12, 2018 (last updated November 26, 2024)

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows remote authenticated users to execute arbitrary code with administrator privileges via unspecified vectors. IBM X-Force ID: 111640.

0

Attacker Value

Unknown

CVE-2016-0327

Disclosure Date: January 12, 2018 (last updated November 26, 2024)

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows local users to gain administrator privileges via unspecified vectors. IBM X-Force ID: 111643.

0

Attacker Value

Unknown

CVE-2016-0332

Disclosure Date: January 12, 2018 (last updated November 26, 2024)

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 do not properly restrict failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach. IBM X-Force ID: 111695.

0

Attacker Value

Unknown

CVE-2017-1483

Disclosure Date: September 28, 2017 (last updated November 26, 2024)

IBM Security Identity Manager Adapters 6.0 and 7.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM X-Force ID: 128621.

0

Attacker Value

Unknown

CVE-2017-1407

Disclosure Date: September 28, 2017 (last updated November 26, 2024)

IBM Security Identity Manager Virtual Appliance 6.0 and 7.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 127394.

Attack Vector: Network Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2017-1362

Disclosure Date: September 25, 2017 (last updated November 26, 2024)

IBM Security Identity Manager Adapters 6.0 and 7.0 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 126801.

0

Attacker Value

Unknown

CVE-2014-6106

Disclosure Date: September 18, 2017 (last updated November 26, 2024)

Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of users for requests that can cause cross-site scripting attacks, web cache poisoning, or other unspecified impacts via unknown vectors.

0