Description

IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 128606.

Remediation

References

CVE-2017-1474

Related Vulnerabilities

ownCloud Improper Authentication Vulnerability (CVE-2014-9045)

WordPress Plugin Recipe Card Blocks for Gutenberg & Elementor Cross-Site Scripting (2.8.0)

MySQL CVE-2017-3467 Vulnerability (CVE-2017-3467)

WordPress Plugin Elementor Pro Cross-Site Scripting (2.0.9)

Ampache Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3929)

Severity

Medium

Classification

CVE-2017-1474 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities