Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SSH implementation on IBM Security Access Manager for Web appliances 7.0 before 7.0.0 FP19, 8.0 before 8.0.1.3 IF3, and 9.0 before 9.0.0.0 IF1 does not properly restrict the set of MAC algorithms, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Access Manager for Web 安全漏洞
Vulnerability Description
IBM Security Access Manager(ISAM)for Web(前称IBM Tivoli Access Manager for e-business)是美国IBM公司的一套用于用户认证、授权和Web单点登录解决方案中的产品,它提供用户访问管理和Web应用保护功能。 ISAM for Web的SSH实现过程中存在安全漏洞,该漏洞源于程序没有正确限制MAC算法的设置。远程攻击者可利用该漏洞破坏加密保护机制。以下版本受到影响:ISAM for Web 7.0版本,8.0版本,9.0版本。
CVSS Information
N/A
Vulnerability Type
N/A