Vulnerability Details CVE-2016-3022
IBM Security Access Manager for Web could allow an authenticated user to gain access to highly sensitive information due to incorrect file permissions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 74.5%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2016-3022
-
cpe:2.3:h:ibm:security_access_manager_for_mobile_appliance:8.0
-
cpe:2.3:h:ibm:security_access_manager_for_web_appliance:7.0
-
cpe:2.3:h:ibm:security_access_manager_for_web_appliance:8.0
-
cpe:2.3:o:ibm:security_access_manager_9.0_firmware:9.0.0
-
cpe:2.3:o:ibm:security_access_manager_9.0_firmware:9.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_9.0_firmware:9.0.1.0
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.2
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.3
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.0.5
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.0
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.2
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.3
-
cpe:2.3:o:ibm:security_access_manager_for_mobile_8.0_firmware:8.0.1.4
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.10
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.11
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.12
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.13
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.14
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.15
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.16
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.2
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.3
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.4
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.5
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.6
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.7
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.8
-
cpe:2.3:o:ibm:security_access_manager_for_web_7.0_firmware:7.0.0.9
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.1
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.2
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.3
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.0.5
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.0
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.2
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.3
-
cpe:2.3:o:ibm:security_access_manager_for_web_8.0_firmware:8.0.1.4