Lucene search
China National Vulnerability DatabaseCNVD-2023-83664HistoryOct 23, 2023 - 12:00 a.m.
IBM Security Verify Privilege Manager Access Control Error Vulnerability
2023-10-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
access control error
endpoint privilege management
application control
ibm security verify privilege manager
session expiration
sensitive information
on-premises version 11.5
IBM Security Verify Privilege Manager is a security management software from International Business Machines (IBM) for endpoint privilege management and application control in corporate environments. The software stops unintentional downloads of malware and ransomware from attacking applications by removing local administrative privileges from endpoints, making it easy to enforce least privilege and application control immediately with IBM Security Privilege Manager. An access control error vulnerability exists in IBM Security Verify Privilege On-Premises version 11.5, which stems from insufficient handling of session expiration times and can be exploited by an attacker to obtain sensitive information.
Related
cvelist
cvelist
CVE-2021-20581 IBM Security Verify Privilege information disclosure
2023-10-17 01:17:54
prion
prion
Session fixation
2023-10-17 02:15:00
nvd
nvd
CVE-2021-20581
2023-10-17 02:15:09
vulnrichment
vulnrichment
CVE-2021-20581 IBM Security Verify Privilege information disclosure
2023-10-17 01:17:54
cve
cve
CVE-2021-20581
2023-10-17 02:15:09
