Description
IBM Security Access Manager Appliance 9.0.7.1 could allow an authenticated user to bypass security by allowing id_token claims manipulation without verification. IBM X-Force ID: 181481.
Remediation
References
Related Vulnerabilities
Oracle HTTP Server CVE-2016-0671 Vulnerability (CVE-2016-0671)
MySQL CVE-2022-21372 Vulnerability (CVE-2022-21372)
TYPO3 Improper Input Validation Vulnerability (CVE-2013-7079)
Python Uncontrolled Resource Consumption Vulnerability (CVE-2012-0876)
Oracle Database Server CVE-2015-4873 Vulnerability (CVE-2015-4873)