CyberSec.Space Logo
Back to CVE Browser

CVE-2018-1640

HIGH
8.8
CVSS Severity Score
EPSS Score0.0420%
EPSS Percentile30.13th
PublishedApr 2, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 144580.

Affected Platforms (CPE)

πŸ“¦
Ibm

Security Privileged Identity Manager

= 2.1.1

References & Advisories

πŸ”— http://www.ibm.com/support/docview.wss?uid=ibm10879093
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/144580
πŸ”— http://www.ibm.com/support/docview.wss?uid=ibm10879093
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/144580

Related Vulnerabilities

CVE-2016-59649.8

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could all...

CVE-2021-31968.8

An issue was discovered in Hitachi ID Bravura Security Fabric 11.0.0 through 11.1.3, 12.0.0 through 12.0.2, and 12.1.0. When using...

CVE-2016-59638.8

IBM Security Privileged Identity Manager (ISPIM) Virtual Appliance 2.x before 2.0.2 FP8 does not properly validate updates, which ...

CVE-2016-03248.8

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows remote authentic...