Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2015-5012

The SSH implementation on IBM Security Access Manager for Web appliances 7.0 before 7.0.0 FP19, 8.0 before 8.0.1.3 IF3, and 9.0 before 9.0.0.0 IF1 does not properly restrict the set of MAC algorithms, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.

  • Published: Feb 15, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-5012
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.7 7.0.0.7.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.2 7.0.0.2.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.11 7.0.0.11.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.12 7.0.0.12.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.1.2 8.0.1.2.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.15 7.0.0.15.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.4 7.0.0.4.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.14 7.0.0.14.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.1 8.0.1.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.13 7.0.0.13.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.5 7.0.0.5.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.0.1 8.0.0.1.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.3 7.0.0.3.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.16 7.0.0.16.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.17 7.0.0.17.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.10 7.0.0.10.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.0.3 8.0.0.3.x
ibm / security_access_manager_9.0_firmware 9.0.0 9.0.0.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.1 7.0.0.1.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.1.0 8.0.1.0.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.9 7.0.0.9.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.6 7.0.0.6.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.8 7.0.0.8.x
ibm / security_access_manager_for_web_7.0_firmware 7.0.0.18 7.0.0.18.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.0.5 8.0.0.5.x
ibm / security_access_manager_for_web_8.0_firmware 8.0.0.2 8.0.0.2.x