CVE-2017-1459

Summary

IBM Security Access Manager Appliance 8.0.0 and 9.0.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 128378.

Affected Software

VendorProductVersion RangeStatus
IBMSecurity Access Manager9.0.0.1affected
IBMSecurity Access Manager8.0.0affected
IBMSecurity Access Manager8.0.0.1affected
IBMSecurity Access Manager8.0.0.2affected
IBMSecurity Access Manager8.0.0.3affected
IBMSecurity Access Manager8.0.0.4affected
IBMSecurity Access Manager8.0.0.5affected
IBMSecurity Access Manager8.0.1affected
IBMSecurity Access Manager8.0.1.2affected
IBMSecurity Access Manager8.0.1.3affected
IBMSecurity Access Manager8.0.1.4affected
IBMSecurity Access Manager9.0.0affected
IBMSecurity Access Manager9.0.1.0affected
IBMSecurity Access Manager9.0.2.0affected
IBMSecurity Access Manager8.0.1.5affected
IBMSecurity Access Manager9.0.2.1affected
IBMSecurity Access Manager9.0.3affected
IBMSecurity Access Manager9.0.3.1affected
IBMSecurity Access Manager8.0.1.6affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References