CVE-2016-0330

CWE-2553 documents3 sources
Severity
7.3HIGH
EPSS
0.2%
top 56.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Security Identity Manager Adapter
Timeline
PublishedJul 15
Latest updateMay 17

Description

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles password creation, which makes it easier for remote attackers to obtain access by leveraging an attack against the password algorithm.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:LExploitability: 3.9 | Impact: 3.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5xrh-pr4g-c67c: IBM Security Identity Manager (ISIM) Virtual Appliance 72022-05-17
CVEList
CVE-2016-0330: IBM Security Identity Manager (ISIM) Virtual Appliance 72016-07-15
CVE-2016-0330 (HIGH CVSS 7.3) | IBM Security Identity Manager (ISIM | cvebase.io