IBM Security Access Manager For Web 8.0 Firmware 8.0.1
Approved changes feed: RSS · Atom
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1:*:*:*:*:*:*:*
part: o version: 8.0.1 update: *
| Vendor | Ibm (177c0602-9232-5933-8f2f-9d22f079d22d) |
|---|---|
| Product | Security Access Manager For Web 8.0 Firmware (5dd1ded7-c580-5fbb-8ef1-1a19ecdc2e54) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-8531 |
vulnerable | 2026-06-03 14:35:12.265086 |
Details available
Cross-site scripting (XSS) vulnerability in IBM Security Access Manager for Web 8.0 before 8.0.1.3 IF4 and 9.0 before 9.0.0.1 IF1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Published: 2016-02-15T02:00:00.000Z
Updated: 2024-08-06T08:20:42.431Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-5018 |
vulnerable | 2026-06-03 14:34:58.281984 |
Details available
IBM Security Access Manager for Web 7.0.0 before FP19 and 8.0 before 8.0.1.3 IF3, and Security Access Manager 9.0 before 9.0.0.0 IF1, allows remote authenticated users to execute arbitrary OS commands by leveraging Local Management Interface (LMI) access.
Published: 2016-01-02T02:00:00.000Z
Updated: 2024-08-06T06:32:32.301Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-5012 |
vulnerable | 2026-06-03 14:34:58.251657 |
Details available
The SSH implementation on IBM Security Access Manager for Web appliances 7.0 before 7.0.0 FP19, 8.0 before 8.0.1.3 IF3, and 9.0 before 9.0.0.0 IF1 does not properly restrict the set of MAC algorithms, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.
Published: 2016-02-15T02:00:00.000Z
Updated: 2024-08-06T06:32:31.881Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-5010 |
vulnerable | 2026-06-03 14:34:58.242879 |
Details available
IBM Security Access Manager for Web 7.0 before 7.0.0 IF21, 8.0 before 8.0.1.3 IF4, and 9.0 before 9.0.0.1 IF1 does not have a lockout mechanism for invalid login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
Published: 2016-02-15T02:00:00.000Z
Updated: 2024-08-06T06:32:31.524Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.