Vulnerability in Ibm Security_access_manager_for_web_7.0_firmware
CVE-2014-4809
The WebSEAL component in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, when e-community SSO is enabled, allows remote attackers to cause a denial of service (component hang) via un…
EPSS: 0.009 (76.6th percentile) — read the EPSS interpretation.
Affected products
- Ibm Security_access_manager_for_web_7.0_firmware — versions 7.0.0.0, 7.0.0.1, 7.0.0.2
- Ibm Security_access_manager_for_web_8.0_firmware — versions 8.0.0.2, 8.0.0.3, 8.0.0.4
- Ibm Security_access_manager_for_web_appliance — versions 8.0, 7.0
- N/a — versions n/a
References
- psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- 61294 (x_refsource_SECUNIA, third-party-advisory)
- ibm-sam-cve20144809-dos(95376) (vdb-entry, x_refsource_XF)
- IV64915 (vendor-advisory, x_refsource_AIXAPAR)