CVE-2016-3046
N/A
N/A
Summary
IBM Security Access Manager for Web is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements which could allow the attacker to view information in the back-end database.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM Corporation | Access Manager | 9.0 | affected |
| IBM Corporation | Access Manager | 9.0.0.1 | affected |
| IBM Corporation | Access Manager | 9.0.1 | affected |
| IBM Corporation | Access Manager | 7.0.0 | affected |
| IBM Corporation | Access Manager | 8.0.0 | affected |
| IBM Corporation | Access Manager | 8.0.0.1 | affected |
| IBM Corporation | Access Manager | 8.0.0.2 | affected |
| IBM Corporation | Access Manager | 8.0.0.3 | affected |
| IBM Corporation | Access Manager | 8.0.0.4 | affected |
| IBM Corporation | Access Manager | 8.0.0.5 | affected |
| IBM Corporation | Access Manager | 8.0.1 | affected |
| IBM Corporation | Access Manager | 8.0.1.2 | affected |
| IBM Corporation | Access Manager | 8.0.1.3 | affected |
| IBM Corporation | Access Manager | 8.0.1.4 | affected |
| IBM Corporation | Access Manager | 9.0.0 | affected |
| IBM Corporation | Access Manager | 9.0.1.0 | affected |
Weaknesses
- Data Manipulation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.