CVE-2015-5013

Summary

The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationAccess Manager9.0affected
IBM CorporationAccess Manager9.0.0.1affected
IBM CorporationAccess Manager9.0.1affected
IBM CorporationAccess Manager7.0.0affected
IBM CorporationAccess Manager8.0.0affected
IBM CorporationAccess Manager8.0.0.1affected
IBM CorporationAccess Manager8.0.0.2affected
IBM CorporationAccess Manager8.0.0.3affected
IBM CorporationAccess Manager8.0.0.4affected
IBM CorporationAccess Manager8.0.0.5affected
IBM CorporationAccess Manager8.0.1affected
IBM CorporationAccess Manager8.0.1.2affected
IBM CorporationAccess Manager8.0.1.3affected
IBM CorporationAccess Manager8.0.1.4affected
IBM CorporationAccess Manager9.0.0affected
IBM CorporationAccess Manager9.0.1.0affected
IBM CorporationAccess Manager9.0.2.0affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References