Tivoli Federated Identity Manager CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Ibm Subscriptions

Filtered by product Tivoli Federated Identity Manager Subscriptions

Search

Switch to Advanced Search (Beta)

Total 22 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2009-5083	1 Ibm	1 Tivoli Federated Identity Manager	2025-04-11	N/A
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when configured as an OpenID relying party, does not perform the expected login rejection upon receiving an OP-Identifier from an OpenID provider, which allows remote attackers to bypass authentication via unspecified vectors.
CVE-2018-1443	1 Ibm	2 Security Access Manager, Tivoli Federated Identity Manager	2024-11-21	N/A
An XML parsing vulnerability affects IBM SAML-based single sign-on (SSO) systems (IBM Security Access Manager 9.0.0 - 9.0.4 and IBM Tivoli Federated Identity Manager 6.2 - 6.0.2.) This vulnerability can allow an attacker with authenticated access to trick SAML systems into authenticating as a different user without knowledge of the victim users password. IBM X-Force ID: 139754.

« first previous Page 2 of 2.