CVE-2016-3021: IBM Security Access Manager for Web could allow an authenticated attacker to obtain sensitive information from error message using a specially crafted HTTP…

low2.7CVSS 3.0

AVNACLPRHUINSUCLINAN

IBM Security Access Manager for Web could allow an authenticated attacker to obtain sensitive information from error message using a specially crafted HTTP request.

Affected

51 ranges· showing 25

Vendor	Product	Version range	Fixed in
ibm	security_access_manager_9.0_firmware	—	—
ibm	security_access_manager_9.0_firmware	—	—
ibm	security_access_manager_9.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_mobile_8.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—
ibm	security_access_manager_for_web_7.0_firmware	—	—