PT-2017-6806 · Ibm · Ibm Security Access Manager Appliance

Published

2017-02-08

Updated

2021-11-09

CVE-2015-5013

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Security Access Manager appliance (affected versions not specified)

Description The issue concerns configuration files in the IBM Security Access Manager appliance that contain obfuscated plaintext-passwords. These files can be accessed by authenticated users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2015-5013

Affected Products

Ibm Security Access Manager Appliance

PT-2017-6806 · Ibm · Ibm Security Access Manager Appliance

CVE-2015-5013

Weakness Enumeration

Related Identifiers

Affected Products

References · 4