cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2016-3025,https://securityvulnerability.io/vulnerability/CVE-2016-3025,,"IBM Security Access Manager for Mobile 8.x before 8.0.1.4 IF3 and Security Access Manager 9.x before 9.0.1.0 IF5 do not properly restrict failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach.",IBM,"Security Access Manager,Security Access Manager For Mobile",8.1,HIGH,0.013089999556541443,false,,false,false,false,,,false,false,,2016-11-25T03:38:00.000Z,0
CVE-2014-6084,https://securityvulnerability.io/vulnerability/CVE-2014-6084,,IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 make it easier for remote attackers to obtain sensitive information by sniffing the network during use of a weak SSL cipher.,IBM,Security Access Manager For Mobile,,,0.002139999996870756,false,,false,false,false,,,false,false,,2014-12-18T16:00:00.000Z,0
CVE-2014-6086,https://securityvulnerability.io/vulnerability/CVE-2014-6086,,"IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 do not ensure that HTTPS is used, which allows remote attackers to obtain sensitive information by sniffing the network during an HTTP session.",IBM,Security Access Manager For Mobile,,,0.003109999932348728,false,,false,false,false,,,false,false,,2014-12-18T16:00:00.000Z,0
CVE-2014-6076,https://securityvulnerability.io/vulnerability/CVE-2014-6076,,IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to conduct clickjacking attacks via a crafted web site.,IBM,Security Access Manager For Mobile,,,0.0024300001095980406,false,,false,false,false,,,false,false,,2014-12-18T16:00:00.000Z,0
CVE-2014-6078,https://securityvulnerability.io/vulnerability/CVE-2014-6078,,"IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 do not have a lockout period after invalid login attempts, which makes it easier for remote attackers to obtain admin access via a brute-force attack.",IBM,Security Access Manager For Mobile,,,0.0032599999103695154,false,,false,false,false,,,false,false,,2014-12-18T16:00:00.000Z,0
CVE-2014-6080,https://securityvulnerability.io/vulnerability/CVE-2014-6080,,SQL injection vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.,IBM,Security Access Manager For Mobile,,,0.001829999964684248,false,,false,false,false,,,false,false,,2014-12-18T16:00:00.000Z,0
CVE-2014-6079,https://securityvulnerability.io/vulnerability/CVE-2014-6079,,"Cross-site scripting (XSS) vulnerability in the Local Management Interface in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, and Security Access Manager for Mobile 8.x before 8.0.0-ISS-ISAM-FP0005, allows remote attackers to inject arbitrary web script or HTML via a crafted URL.",IBM,"Security Access Manager For Mobile 8.0 Firmware,Security Access Manager For Mobile Appliance",,,0.0028699999675154686,false,,false,false,false,,,false,false,,2014-10-03T01:00:00.000Z,0
CVE-2014-4751,https://securityvulnerability.io/vulnerability/CVE-2014-4751,,"Cross-site scripting (XSS) vulnerability in IBM Security Access Manager for Mobile 8.0.0.0, 8.0.0.1, and 8.0.0.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.",IBM,Security Access Manager For Mobile,,,0.001769999973475933,false,,false,false,false,,,false,false,,2014-08-12T01:00:00.000Z,0
CVE-2014-3073,https://securityvulnerability.io/vulnerability/CVE-2014-3073,,Unspecified vulnerability in IBM Security Access Manager (ISAM) for Mobile 8.0 and IBM Security Access Manager for Web 7.0 and 8.0 allows remote attackers to execute arbitrary code via unknown vectors.,IBM,"Security Access Manager For Web Appliance,Security Access Manager For Mobile Software,Security Access Manager For Web Software,Security Access Manager For Mobile Appliance",,,0.01638999953866005,false,,false,false,false,,,false,false,,2014-06-21T15:00:00.000Z,0