exploitDog

GHSA-fq3j-gh2w-h7h5

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 3.7

Описание

IBM Security Access Manager 9.0.1 through 9.0.6 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-Force ID: 158510.

IBM Security Access Manager 9.0.1 through 9.0.6 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-Force ID: 158510.

Ссылки

EPSS

Процентиль: 23%

0.00075

Низкий

3.7 Low

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2019-4150

CVSS3: 3.7

nvd

больше 6 лет назад

IBM Security Access Manager 9.0.1 through 9.0.6 does not validate, or incorrectly validates, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. IBM X-Force ID: 158510.

EPSS

Процентиль: 23%

0.00075

Низкий

3.7 Low

CVSS3

CVE ID

Дефекты

CWE-295