Ibm Security Identity Manager Virtual Appliance

4 CVEs affecting Ibm Security Identity Manager Virtual Appliance. Latest disclosed: 2020-07-01. Critical: 0, High: 1.

Top CVEs affecting Ibm Security Identity Manager Virtual Appliance
CVESeverityScorePublishedSummary
CVE-2019-4676High7.82020-07-01IBM Security Identity Manager Virtual Appliance 7.0.2 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 171512.
CVE-2019-4704Medium4.32020-07-01IBM Security Identity Manager Virtual Appliance 7.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to ge…
CVE-2019-4706Low2.72020-07-01IBM Security Identity Manager Virtual Appliance 7.0.2 writes information to log files which can be of a sensitive nature and give valuable guidance to an attac…
CVE-2019-4705Low2.72020-07-01IBM Security Identity Manager Virtual Appliance 7.0.2 discloses sensitive information to unauthorized users. The information can be used to mount further attac…