Search Results (Refine Search)
- CPE Product Version: cpe:/a:ibm:tivoli_identity_manager:5.0.0.6
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-0961 |
Cross-site request forgery (CSRF) vulnerability in IBM Tivoli Identity Manager (ITIM) 5.0 before 5.0.0.15 and 5.1 before 5.1.0.15 and IBM Security Identity Manager (ISIM) 6.0 before 6.0.0.2 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences. Published: June 08, 2014; 2:55:05 PM -0400 |
V3.x:(not available) V2.0: 6.0 MEDIUM |
CVE-2009-2583 |
Multiple session fixation vulnerabilities in IBM Tivoli Identity Manager (ITIM) 5.0.0.6 allow remote attackers to hijack web sessions via unspecified vectors involving the (1) console and (2) self service interfaces. Published: July 23, 2009; 4:30:00 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |