CVE-2016-9703
N/A
N/A
Summary
IBM Security Identity Manager Virtual Appliance does not invalidate session tokens which could allow an unauthorized user with physical access to the work station to obtain sensitive information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM Corporation | Identity Manager | 6.0 | affected |
| IBM Corporation | Identity Manager | 5.0 | affected |
| IBM Corporation | Identity Manager | 5.1 | affected |
| IBM Corporation | Identity Manager | 6 | affected |
| IBM Corporation | Identity Manager | 7.0 | affected |
| IBM Corporation | Identity Manager | 7 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/95327
- http://www.securitytracker.com/id/1037765
- http://www.ibm.com/support/docview.wss?uid=swg21996761
References
- http://www.securityfocus.com/bid/95327
- http://www.securitytracker.com/id/1037765
- http://www.ibm.com/support/docview.wss?uid=swg21996761
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.