8
CVE-2014-3053
- EPSS 0.78%
- Published 21.06.2014 15:55:03
- Last modified 12.04.2025 10:46:40
- Source psirt@us.ibm.com
- Teams watchlist Login
- Open Login
The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 through 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware 8.0.0.2 and 8.0.0.3, allows remote attackers to bypass authentication via a login action with invalid credentials.
Data is provided by the National Vulnerability Database (NVD)
Ibm ≫ Security Access Manager For Web 8.0 Firmware Version8.0.0.2
Ibm ≫ Security Access Manager For Web 8.0 Firmware Version8.0.0.3
Ibm ≫ Security Access Manager For Web Appliance Version8.0
Ibm ≫ Security Access Manager For Mobile Software Version8.0
Ibm ≫ Security Access Manager For Web Software Version7.0
Ibm ≫ Security Access Manager For Web Software Version8.0
Ibm ≫ Security Access Manager For Mobile Appliance Version8.0
Ibm ≫ Security Access Manager For Web Appliance Version7.0
Ibm ≫ Security Access Manager For Web Appliance Version8.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.78% | 0.715 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 8 | 6.5 | 9.5 |
AV:A/AC:L/Au:N/C:C/I:P/A:C
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.