Unrated severityNVD Advisory· Published Oct 15, 2020· Updated Sep 16, 2024
CVE-2019-4552
CVE-2019-4552
Description
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 are vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the attacker to perform further attacks, such as Web cache poisoning, cross-site scripting, and possibly obtain sensitive information. IBM X-Force ID: 165960.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4=10.0.0+ 1 more
- (no CPE)range: =10.0.0
- (no CPE)range: 10.0.0
=9.0.7+ 1 more
- (no CPE)range: =9.0.7
- (no CPE)range: 9.0.7
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/165960mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6348046mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.