SymmetricalDataSecurity: IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513)

Thursday, August 22, 2019

IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513)

IBM Security Access Manager for Enterprise Single-Sign On has addressed the following vulnerability: XML External Entity Injection (XXE) attack when processing XML data.

CVE(s): CVE-2019-4513

Affected product(s) and affected version(s):
IBM Security Access Manager for Enterprise Single-Sign On 8.2.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10996716
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164555

The post IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/33PCpYZ

SymmetricalDataSecurity

Thursday, August 22, 2019

IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews