Description

IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 152078.

Remediation

References

CVE-2018-1887

Related Vulnerabilities

WordPress Plugin All-in-One WP Migration Information Disclosure (7.0)

WordPress Plugin Podcast Importer SecondLine SQL Injection (1.3.7)

WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1)

Jboss EAP Credentials Management Errors Vulnerability (CVE-2012-0034)

WordPress Plugin Preview E-mails for WooCommerce Cross-Site Scripting (1.6.8)

Severity

High

Classification

CVE-2018-1887 CWE-798 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities