N/A

IBM Security Identity Manager Virtual Appliance 6.0 and 7.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 127394.

N/A

N/A

IBM Security Identity Manager Virtual Appliance 命令注入漏洞

IBM Security Identity Manager（ISIM）是美国IBM公司的一套身份管理和治理解决方案。该方案可在整个用户生命周期内自动创建、修改、重新认证和终止用户特权，并支持基于策略的密码管理。IBM Security Identity Manager（ISIM）Virtual Appliance是ISIM虚拟应用程序。 ISIM Virtual Appliance 6.0版本和7.0版本中存在命令注入漏洞。远程攻击者可通过发送特制的请求利用该漏洞在系统上执行任意命令。

N/A

N/A