First published: Fri Aug 24 2018(Updated: )
IBM Security Access Manager Appliance 9.0.4.0 and 9.0.5.0 could allow remote code execution when Advanced Access Control or Federation services are running. IBM X-Force ID: 147370.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Security Access Manager | =9.0.4.0 | |
IBM Security Access Manager | =9.0.5.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2018-1722 is critical.
IBM Security Access Manager Appliance versions 9.0.4.0 and 9.0.5.0 are affected by CVE-2018-1722.
CVE-2018-1722 describes a vulnerability in IBM Security Access Manager Appliance where remote code execution is possible when Advanced Access Control or Federation services are running.
Please refer to the vendor's website or support channels for information on available fixes or patches for CVE-2018-1722.
You can find more information about CVE-2018-1722 on the following references: [SecurityFocus](http://www.securityfocus.com/bid/105145), [SecurityTracker](http://www.securitytracker.com/id/1041557), [IBM X-Force](https://exchange.xforce.ibmcloud.com/vulnerabilities/147370).