CVE-2017-1478

CWE-200Information Exposure3 documents3 sources
Severity
3.3LOW
EPSS
0.1%
top 74.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Security Access ManagerIBM Security Access Manager 9.0 Firmware
Timeline
PublishedJan 11
Latest updateMay 14

Description

IBM Security Access Manager Appliance 9.0.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 128613.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/security_access_manager7 versions+6

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-29x2-pp5x-vjgj: IBM Security Access Manager Appliance 92022-05-14
CVEList
CVE-2017-1478: IBM Security Access Manager Appliance 92018-01-11
CVE-2017-1478 (LOW CVSS 3.3) | IBM Security Access Manager Applian | cvebase.io