Description

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an unauthorized public Oauth client to bypass some or all of the authentication checks and gain access to applications. IBM X-Force ID: 182216.

Remediation

References

CVE-2020-4499

Related Vulnerabilities

WordPress Plugin Social Share Icons & Social Share Buttons Unspecified Vulnerability (1.4)

WordPress Plugin Under Construction, Coming Soon & Maintenance Mode Multiple Vulnerabilities (1.1.1)

WordPress Plugin All-in-One WP Migration Arbitrary File Deletion (7.58)

Joomla! Core 3.7.0 SQL Injection (3.7.0)

Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-8904)

Severity

Critical

Classification

CVE-2020-4499 CWE-862 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities