Security_directory_suite_va - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Security_directory_suite_va
(Ibm)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	7

Date	Id	Summary	Products	Score	Patch	Annotated
2023-06-15	CVE-2022-33159	IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 stores user credentials in plain clear text which can be read by an authenticated user. IBM X-Force ID: 228567.	Security_directory_suite_va	6.5
2023-06-15	CVE-2022-33163	IBM Security Directory Suite VA 8.0.1 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 228571.	Security_directory_suite_va	8.1
2023-06-15	CVE-2022-33168	IBM Security Directory Suite VA 8.0.1 could allow an attacker to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 228588.	Security_directory_suite_va	7.5
2023-06-15	CVE-2022-32752	IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 228439.	Security_directory_suite_va	8.8
2023-06-15	CVE-2022-32757	IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 228510.	Security_directory_suite_va	7.5
2023-06-15	CVE-2022-33166	IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a privileged user to upload malicious files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 228586.	Security_directory_suite_va	7.2
2023-10-06	CVE-2022-33160	IBM Security Directory Suite 8.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 228568.	Security_directory_suite_va	7.5