What the vulnerability does
01Description
IBM Security Access Manager Appliance 9.0.7.1 could allow an authenticated user to bypass security by allowing id_token claims manipulation without verification. IBM X-Force ID: 181481.
CVSS base score
CVSS vector
CVSS:3.0/C:N/AV:N/UI:N/AC:L/PR:L/A:N/I:H/S:U/E:U/RC:C/RL:O
What the vulnerability does
IBM Security Access Manager Appliance 9.0.7.1 could allow an authenticated user to bypass security by allowing id_token claims manipulation without verification. IBM X-Force ID: 181481.
Key dates
External resources