8
CVE-2014-3053
- EPSS 0.78%
- Veröffentlicht 21.06.2014 15:55:03
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@us.ibm.com
- Teams Watchlist Login
- Unerledigt Login
The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 through 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware 8.0.0.2 and 8.0.0.3, allows remote attackers to bypass authentication via a login action with invalid credentials.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Security Access Manager For Web 8.0 Firmware Version8.0.0.2
Ibm ≫ Security Access Manager For Web 8.0 Firmware Version8.0.0.3
Ibm ≫ Security Access Manager For Web Appliance Version8.0
Ibm ≫ Security Access Manager For Mobile Software Version8.0
Ibm ≫ Security Access Manager For Web Software Version7.0
Ibm ≫ Security Access Manager For Web Software Version8.0
Ibm ≫ Security Access Manager For Mobile Appliance Version8.0
Ibm ≫ Security Access Manager For Web Appliance Version7.0
Ibm ≫ Security Access Manager For Web Appliance Version8.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.78% | 0.715 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8 | 6.5 | 9.5 |
AV:A/AC:L/Au:N/C:C/I:P/A:C
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.