ibm bigfix platform 9.1 vulnerabilities and exploits

(subscribe to this query)

IBM BigFix Platform could allow a remote malicious user to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary code on the system.

Ibm Bigfix Platform 9.0 Ibm Bigfix Platform 9.1 Ibm Bigfix Platform 9.5 Ibm Bigfix Platform 9.2

IBM BigFix Platform 9.0, 9.1 prior to 9.1.8, and 9.2 prior to 9.2.8 allow remote authenticated users to execute arbitrary commands by leveraging report server access. IBM X-Force ID: 111302.

Ibm Bigfix Platform 9.0 Ibm Bigfix Platform

Cross-site request forgery (CSRF) vulnerability in the IBM BigFix Platform 9.0, 9.1, 9.2, and 9.5 prior to 9.5.2 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences. IBM X-Force ID: 111363.

Ibm Bigfix Platform 9.2 Ibm Bigfix Platform Ibm Bigfix Platform 9.1 Ibm Bigfix Platform 9.0

IBM Tivoli Endpoint Manager could allow a user under special circumstances to inject commands that would be executed with unnecessary higher privileges than expected.

Ibm Bigfix Platform 9.5 Ibm Bigfix Platform 9.2 Ibm Bigfix Platform 9.1 Ibm Bigfix Platform 9.0

IBM Tivoli Endpoint Manager could allow a remote malicious user to upload arbitrary files. A remote attacker could exploit this vulnerability to upload a malicious file. The only way that file would be executed would be through a phishing attack to trick an unsuspecting victim to...

Ibm Bigfix Platform 9.0 Ibm Bigfix Platform 9.1 Ibm Bigfix Platform 9.2 Ibm Bigfix Platform 9.5

1 Github repository

IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash the system. IBM X-Force ID: 123906.

Ibm Bigfix Platform 9.1 Ibm Bigfix Platform 9.5 Ibm Bigfix Platform 9.2

IBM Tivoli Endpoint Manager is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 123859.

Ibm Bigfix Platform 9.1 Ibm Bigfix Platform 9.1.7 Ibm Bigfix Platform 9.2.0 Ibm Bigfix Platform 9.2.2 Ibm Bigfix Platform 9.2.6 Ibm Bigfix Platform 9.1.3 Ibm Bigfix Platform 9.1.4 Ibm Bigfix Platform 9.1.5 Ibm Bigfix Platform 9.1.6 Ibm Bigfix Platform 9.2.3 Ibm Bigfix Platform 9.2.4 Ibm Bigfix Platform 9.2.5 Ibm Bigfix Platform 9.2.7 Ibm Bigfix Platform 9.2 Ibm Bigfix Platform 9.2.1

IBM BigFix Platform could allow an attacker on the local network to crash the BES and relay servers.

Ibm Bigfix Platform 9.2 Ibm Bigfix Platform 9.0 Ibm Bigfix Platform 9.5 Ibm Bigfix Platform 9.1

IBM BigFix Platform could allow an attacker on the local network to crash the BES server using a specially crafted XMLSchema request.

Ibm Bigfix Platform 9.0 Ibm Bigfix Platform 9.1

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook