Vulnerability in Ibm Security_access_manager_for_mobile

CVE-2014-6076

IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to conduct clickjacking attacks via a crafted web site.

EPSS: 0.002 (48.4th percentile) — read the EPSS interpretation.

Affected products

Ibm Security_access_manager_for_mobile — versions 8.0
Ibm Security_access_manager_for_web — versions 7.0, 8.0
N/a — versions n/a

Weakness classification (CWE)

CWE-254

References

psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
IV67358 (vendor-advisory, x_refsource_AIXAPAR)
ibm-sam-cve20146076-clickjacking(95729) (vdb-entry, x_refsource_XF)
IV67581 (vendor-advisory, x_refsource_AIXAPAR)