This page lists publicly disclosed CVE vulnerabilities affecting broadcom symantec_identity_manager (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-23951 | Ability to enumerate the Oracle LDAP attributes for the current user by modifying the query used by the application | [email protected] | 6.1 | 0.48% | 2023-01-26 | 2026-06-17 |
| CVE-2023-23950 | User’s supplied input (usually a CRLF sequence) can be used to split a returning response into two responses. | [email protected] | 6.1 | 0.50% | 2023-01-26 | 2026-06-17 |
| CVE-2023-23949 | An authenticated user can supply malicious HTML and JavaScript code that will be executed in the client browser. | [email protected] | 5.4 | 0.56% | 2023-01-26 | 2026-06-17 |