PT-2018-4611 · Ibm+1 · Ibm Security Identity Manager Virtual Appliance+1

Published

2015-03-13

Updated

2018-01-29

CVE-2016-0332

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Security Identity Manager (ISIM) Virtual Appliance versions 7.0.0.0 through 7.0.1.0

Description The issue makes it easier for remote attackers to obtain access via a brute-force approach due to improper restriction of failed login attempts.

Recommendations For IBM Security Identity Manager (ISIM) Virtual Appliance versions 7.0.0.0 through 7.0.1.0, apply the fix 7.0.1-ISS-SIM-FP0001 to properly restrict failed login attempts and prevent brute-force attacks.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-254

Related Identifiers

CVE-2016-0332

OPENSUSE-SU-2015_0490-1

Affected Products

Ibm Security Identity Manager Virtual Appliance

Suse

PT-2018-4611 · Ibm+1 · Ibm Security Identity Manager Virtual Appliance+1

CVE-2016-0332

Weakness Enumeration

Related Identifiers

Affected Products

References · 4