CVE-2019-4038
7.2
CVSS:3.0/A:H/AC:L/AV:P/C:H/I:H/PR:H/S:C/UI:N/E:U/RC:C/RL:O
Summary
IBM Security Identity Manager 6.0 and 7.0 could allow an attacker to create unexpected control flow paths through the application, potentially bypassing security checks. Exploitation of this weakness can result in a limited form of code injection. IBM X-Force ID: 156162.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Security Identity Manager | 6.0 | affected |
| IBM | Security Identity Manager | 7.0 | affected |
Weaknesses
- Gain Access
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/156162
- https://www.ibm.com/support/docview.wss?uid=ibm10869604
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/156162
- https://www.ibm.com/support/docview.wss?uid=ibm10869604
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.