Identity Verification Bypass in IBM Security Access Manager 9.0.1-9.0.6

Identity Verification Bypass in IBM Security Access Manager 9.0.1-9.0.6

CVE-2019-4158 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

IBM Security Access Manager 9.0.1 through 9.0.6 does not prove that a user's identity is correct which can lead to the exposure of resources or functionality to unintended actors. IBM X-Force ID: 158574.

Learn more about our User Device Pen Test.