Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
IBM WebSEAL Missing Authorization Vulnerability - CVE-2020-4499 - Vulnerability Database
IBM WebSEAL

IBM WebSEAL Missing Authorization Vulnerability - CVE-2020-4499

Critical
Reference: CVE-2020-4499
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-4499
Title: IBM WebSEAL Missing Authorization Vulnerability
Overview:

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an unauthorized public Oauth client to bypass some or all of the authentication checks and gain access to applications. IBM X-Force ID: 182216.