CVE-2016-9703

Summary

IBM Security Identity Manager Virtual Appliance does not invalidate session tokens which could allow an unauthorized user with physical access to the work station to obtain sensitive information.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationIdentity Manager6.0affected
IBM CorporationIdentity Manager5.0affected
IBM CorporationIdentity Manager5.1affected
IBM CorporationIdentity Manager6affected
IBM CorporationIdentity Manager7.0affected
IBM CorporationIdentity Manager7affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References