CVE-2014-0963

CWE-3993 documents3 sources
Severity
7.1HIGH
EPSS
2.1%
top 15.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Security Access Manager FOR WEB ApplianceIBM Security Access Manager FOR WEB Software
Timeline
PublishedMay 8
Latest updateMay 17

Description

The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 7.0 before 7.0.0-ISS-SAM-IF0006 and 8.0 before 8.0.0.3-ISS-WGA-IF0002 allows remote attackers to cause a denial of service (infinite loop) via crafted SSL messages.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-jw2q-j6rf-r9j2: The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 72022-05-17
CVEList
CVE-2014-0963: The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 72014-05-08
CVE-2014-0963 (HIGH CVSS 7.1) | The Reverse Proxy feature in IBM Gl | cvebase.io