Описание
IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passwords of other users in the Windows AD environment when IBM Security Identity Manager Windows Password Synch Plug-in is deployed and configured. IBM X-Force ID: 197789.
Ссылки
- VDB EntryVendor Advisory
- PatchVendor Advisory
- VDB EntryVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Одновременно
Одно из
EPSS
7.5 High
CVSS3
6.5 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
Связанные уязвимости
IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passowrds of other users in the Windows AD enviornemnt when IBM Security Identity Manager Windows Password Synch Plug-in is deployed and configured. IBM X-Force ID: 197789.
Уязвимость подключаемого модуля синхронизации паролей Password Synchronization Plug-in программного обеспечения IBM Security Identity Manager, позволяющая нарушителю изменять пароли других пользователей
EPSS
7.5 High
CVSS3
6.5 Medium
CVSS3
3.5 Low
CVSS2