Known Vulnerabilities for Security Identity Manager by Ibm
Listed below are 10 of the newest known vulnerabilities associated with "Security Identity Manager" by "Ibm".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-29864 json | IBM Security Identity Manager 6.0 and 6.0.2 could allow a remote attacker to conduct phishing attacks, using an open redirect... | 6.1 - MEDIUM | 2022-08-30 | 2022-09-02 |
| CVE-2021-29692 json | IBM Security Identity Manager 7.0.2 could allow a remote attacker to obtain sensitive information, caused by the failure to p... | 5.9 - MEDIUM | 2021-05-20 | 2021-05-24 |
| CVE-2021-29691 json | IBM Security Identity Manager 7.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses f... | 7.5 - HIGH | 2021-05-20 | 2021-05-24 |
| CVE-2021-29688 json | IBM Security Identity Manager 7.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical e... | 7.5 - HIGH | 2021-05-20 | 2021-05-24 |
| CVE-2021-29687 json | IBM Security Identity Manager 7.0.2 could allow a remote user to enumerate usernames due to a difference of responses from va... | 5.3 - MEDIUM | 2021-05-20 | 2021-05-24 |
| CVE-2021-29686 json | IBM Security Identity Manager 7.0.2 could allow an authenticated user to bypass security and perform actions that they should... | 8.8 - HIGH | 2021-05-20 | 2022-07-12 |
| CVE-2021-29683 json | IBM Security Identity Manager 7.0.2 stores user credentials in plain clear text which can be read by an authenticated user. I... | 6.5 - MEDIUM | 2021-05-20 | 2021-05-24 |
| CVE-2021-29682 json | IBM Security Identity Manager 7.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical e... | 5.3 - MEDIUM | 2021-05-20 | 2021-05-24 |
| CVE-2021-20488 json | IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passwords of other users in the... | 6.5 - MEDIUM | 2021-06-16 | 2022-07-12 |
| CVE-2021-20483 json | IBM Security Identity Manager 6.0.2 is vulnerable to server-side request forgery (SSRF). By sending a specially crafted reque... | 6.5 - MEDIUM | 2021-06-16 | 2021-06-21 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Security Identity Manager | 7.0.1.8 | |||
| Application | Ibm | Security Identity Manager | 7.0.1.7 | |||
| Application | Ibm | Security Identity Manager | 7.0.1.3 | |||
| Application | Ibm | Security Identity Manager | 7.0.1.11 | |||
| Application | Ibm | Security Identity Manager | 7.0.1.10 | |||
| Application | Ibm | Security Identity Manager | 7.0.1.0 | |||
| Application | Ibm | Security Identity Manager | 7.0.1 | |||
| Application | Ibm | Security Identity Manager | 7.0.0.3 | |||
| Application | Ibm | Security Identity Manager | 7.0.0.2 | |||
| Application | Ibm | Security Identity Manager | 7.0.0.1 | |||
| Application | Ibm | Security Identity Manager | 7.0.0.0 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.6 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.5 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.4 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.3 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.22 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.21 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.20.1 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.20 | |||
| Application | Ibm | Security Identity Manager | 6.0.0.2 |