Description

IBM Security Access Manager Appliance 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 stores potentially sensitive information in log files that could be read by a remote user. IBM X-Force ID: 128617.

Remediation

References

CVE-2017-1480

Related Vulnerabilities

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2015-4852)

WordPress Plugin Auto Publish for Google My Business Cross-Site Scripting (3.3)

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5338)

Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-44308)

PHP Numeric Errors Vulnerability (CVE-2014-3587)

Severity

Medium

Classification

CVE-2017-1480 CWE-532 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities