← Back

Security Identity Manager Adapter

security_identity_manager_adapter

Vendor: Ibm • 9 CVEs

CVEs (9)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-20574
1Ibm
1Security Identity Manager Adapter
Nov 21, 2024
Jun 28, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
IBM Security Identity Manager Adapters 6.0 and 7.0 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and takeover...Show more
IBM Security Identity Manager Adapters 6.0 and 7.0 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and takeover other accounts. IBM X-Force ID: 199252.Show less
CVE-2021-20573
1Ibm
1Security Identity Manager Adapter
Nov 21, 2024
Jun 28, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the server to crash. IBM...Show more
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the server to crash. IBM X-Force ID: 199249.Show less
CVE-2021-20572
1Ibm
1Security Identity Manager Adapter
Nov 21, 2024
Jun 28, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the server to crash. IB...Show more
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the server to crash. IBM X-Force ID: 199247.Show less
CVE-2021-20494
1Ibm
1Security Identity Manager Adapter
Nov 21, 2024
Jun 28, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap based buffer overflow, caused by improper bounds. An authenticared user could overflow the buffer and cause the service to crash. IBM X-Force ID...Show more
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap based buffer overflow, caused by improper bounds. An authenticared user could overflow the buffer and cause the service to crash. IBM X-Force ID: 197882.Show less
CVE-2016-0357
1Ibm
1Security Identity Manager Adapter
May 6, 2026
Jul 15, 2016
N/A· v4
4.3 MEDIUM· v3
4.3 MEDIUM· v2
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows remote attackers to conduct clickjacking attacks via a crafted web site.
CVE-2016-0340
1Ibm
1Security Identity Manager Adapter
May 6, 2026
Jul 15, 2016
N/A· v4
7.4 HIGH· v3
4.4 MEDIUM· v2
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session expiration, which allows remote attackers to hijack sessions by leveraging an unattended works...Show more
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session expiration, which allows remote attackers to hijack sessions by leveraging an unattended workstation.Show less
CVE-2016-0339
1Ibm
1Security Identity Manager Adapter
May 6, 2026
Jul 15, 2016
N/A· v4
5.6 MEDIUM· v3
4.3 MEDIUM· v2
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session identifiers after logout, which makes it easier for remote attackers to spoof users by leverag...Show more
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session identifiers after logout, which makes it easier for remote attackers to spoof users by leveraging knowledge of "traffic records."Show less
CVE-2016-0338
1Ibm
1Security Identity Manager Adapter
May 6, 2026
Jul 15, 2016
N/A· v4
6.2 MEDIUM· v3
2.1 LOW· v2
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows local users to discover cleartext passwords by (1) reading a configuration file or (2) examining a process...Show more
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 allows local users to discover cleartext passwords by (1) reading a configuration file or (2) examining a process.Show less
CVE-2016-0330
1Ibm
1Security Identity Manager Adapter
May 6, 2026
Jul 15, 2016
N/A· v4
7.3 HIGH· v3
5.0 MEDIUM· v2
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles password creation, which makes it easier for remote attackers to obtain access by leveraging an attack...Show more
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles password creation, which makes it easier for remote attackers to obtain access by leveraging an attack against the password algorithm.Show less