Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMBE43744BF79EACB24CC71FF19A3226FA8595C5A3BD2A39F5365C1AFC5875A784
HistorySep 08, 2021 - 8:09 p.m.

Security Bulletin: Security vulnerabilitiy has been fixed in IBM Security Identity Manager (CVE-2021-29692)

2021-09-0820:09:40
www.ibm.com
8

0.002 Low

EPSS

Percentile

55.0%

JSON

Summary

Security vulnerability has been fixed in IBM Security Identity Manager

Vulnerability Details

CVEID:CVE-2021-29692
**DESCRIPTION:**IBM Security Identity Manager 7.0.2 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 200253.
CVSS Base score: 3.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/200253 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
ISIM 6.0.0
ISIM 6.0.2

Remediation/Fixes

Affected Product / Version Fix availability
IBM Security Identity Manager 6.0.2 6.0.2-ISS-SIM-IF0003
IBM Security Identity Manager 6.0.0 6.0.0-ISS-SIM-FP0026

Workarounds and Mitigations

None

Related

nvd 1
prion 1
cvelist 1
cve 1
ibm 1
nvd
nvd
CVE-2021-29692
2021-05-20 15:15:07
prion
prion
Information disclosure
2021-05-20 15:15:00
cvelist
cvelist
CVE-2021-29692
2021-05-19 00:00:00
cve
cve
CVE-2021-29692
2021-05-20 15:15:07
ibm
ibm
Security Bulletin: Security vulnerabilities have been fixed in IBM Security Identity Manager Virtual Appliance
2021-08-31 21:19:46

0.002 Low

EPSS

Percentile

55.0%

JSON
Related for BE43744BF79EACB24CC71FF19A3226FA8595C5A3BD2A39F5365C1AFC5875A784
nvd1prion1cvelist1cve1ibm1