PT-2019-16855 · Ibm · Ibm Security Identity Manager
Published
2019-02-04
·
Updated
2022-12-03
·
CVE-2019-4038
CVSS v3.1
6.2
Medium
| Vector | AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM Security Identity Manager versions 6.0 through 7.0
Description
The issue allows an attacker to create unexpected control flow paths through the application, potentially bypassing security checks. This can result in a limited form of code injection.
Recommendations
For IBM Security Identity Manager versions 6.0 through 7.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Security Identity Manager