PT-2018-5702 · Ibm · Ibm Security Access Manager Appliance
Publicado
2018-01-11
·
Atualizado
2018-02-01
·
CVE-2017-1478
CVSS v3.1
3.3
Baixa
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM Security Access Manager Appliance version 9.0.0
Description:
The issue allows web pages to be stored locally, which can then be read by another user on the system.
Recommendations:
For IBM Security Access Manager Appliance version 9.0.0, consider restricting access to sensitive web pages or implementing additional access controls to prevent unauthorized users from reading locally stored web pages. At the moment, there is no information about a newer version that contains a fix for this issue.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Security Access Manager Appliance