Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Security_verify_directory_integrator
(Ibm)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 2 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2024-07-30 | CVE-2022-33167 | IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 228587. | Security_directory_integrator, Security_verify_directory_integrator | 7.5 | ||
2024-08-16 | CVE-2022-33162 | IBM Security Directory Integrator 7.2.0 and Security Verify Directory Integrator 10.0.0 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources, at the privilege level of a standard unprivileged user. IBM X-Force ID: 228570. | Security_directory_integrator, Security_verify_directory_integrator | 9.8 |