Description

IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 152021.

Remediation

References

CVE-2018-1886

Related Vulnerabilities

WordPress Plugin About Me Page Cross-Site Scripting (4.0)

WordPress Plugin Frontend File Manager Cross-Site Request Forgery (21.3)

WordPress Plugin User Role Editor Cross-Site Request Forgery (3.12)

WordPress Plugin Prismatic Multiple Cross-Site Scripting Vulnerabilities (2.7)

WordPress Plugin Contact Form DB Cross-Site Scripting (2.8.27)

Severity

Medium

Classification

CVE-2018-1886 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities