CVE-2014-3053

Name of the Vulnerable Software and Affected Versions IBM Security Access Manager (ISAM) for Mobile versions 8.0.0.0 through 8.0.0.3 IBM Security Access Manager for Web versions 7.0, 8.0.0.2, 8.0.0.3

Description The issue allows remote attackers to bypass authentication via a login action with invalid credentials, exploiting the Local Management Interface (LMI) in the affected software.

Recommendations For IBM Security Access Manager (ISAM) for Mobile versions 8.0.0.0 through 8.0.0.3, update to a version outside of this range to resolve the issue. For IBM Security Access Manager for Web version 7.0, update to a version outside of the affected range to resolve the issue. For IBM Security Access Manager for Web versions 8.0.0.2 and 8.0.0.3, update to a version outside of this range to resolve the issue.