以下是页面截图中与漏洞有关的关键信息: -security hazard: Multiple instance single mark command for multiple signature validation bypasses - CVE-2012-3314 CVE ID: CVE-2012-3314 summary - Tivoli Federated Identity Manager (TFIM) can accept specially crafted message logos containing invalid or unauthorized XML署名服务 message for specific signing functions and sign token modules TFIM may incorrectly accept malicious message logos, enabling attackers to perform specific operations as authorized users. content - three linked security events lead to these problems. - one sequence occurs when an authorized user in session creates a valid user account and the attacker is maliciously controlling the server's session. Unauthorized validation can cause confusion between correct validating information and false information. - CVSS Base Score: 5.8 - CVSS Vector: [AV:network/AC:restore/AU:never/C:low/I:restore/A:restore] Affected Platforms: - Other versions of Tivoli Federated Identity Manager affected by the program include: - For versions that are no longer in support, patches should be updated to solve the program. - Versions affected by the support: - Tivoli Federated Identity Manager versions 6.1.1, 6.2.0, 6.2.1, 6.2.2 and Tivoli Federated Identity Manager Business Gateway versions 6.1.1, 6.2.0, 6.2.1, 6.2.2 solution - Seller Fix: program and transfer details are provided in the links below. - No additional options available.