Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm data risk manager 2.0.6 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-4427
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote malicious user to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to bypass the...
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
Ibm Data Risk Manager 2.0.1
1 Article
9.1
CVSSv3
CVE-2020-4428
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated malicious user to execute arbitrary commands on the system. IBM X-Force ID: 180533.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
1 Article
4.3
CVSSv3
CVE-2020-4430
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request to download arbitrary files from the system. IBM X-Force ID: 180535.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
2 Articles
9.8
CVSSv3
CVE-2020-4429
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote attacker could exploit this vulnerability to login and execute arbitrary code on the system with root privileges. IBM X-Force ID: 180534.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
1 Article
6.5
CVSSv3
CVE-2021-38915
IBM Data Risk Manager 2.0.6 stores user credentials in plain clear text which can be read by an authenticated user. IBM X-Force ID: 209947.
Ibm Data Risk Manager 2.0.6
7.5
CVSSv3
CVE-2021-38862
IBM Data Risk Manager (iDNA) 2.0.6 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 207980.
Ibm Data Risk Manager 2.0.6
8.8
CVSSv3
CVE-2020-4611
IBM Data Risk Manager (iDNA) 2.0.6 could allow an authenticated user to bypass security and execute actions reserved for admins. IBM X-Force ID: 184922.
Ibm Data Risk Manager
5.3
CVSSv3
CVE-2020-4616
IBM Data Risk Manager (iDNA) 2.0.6 could disclose sensitive username information to an attacker using a specially crafted HTTP request. IBM X-Force ID: 184929.
Ibm Data Risk Manager
6.5
CVSSv3
CVE-2020-4612
IBM Data Risk Manager (iDNA) 2.0.6 could allow an authenticated user to obtain sensitive information using a specially crafted HTTP request. IBM X-Force ID: 184924.
Ibm Data Risk Manager
7.5
CVSSv3
CVE-2020-4614
IBM Data Risk Manager (iDNA) 2.0.6 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt sensitive information. IBM X-Force ID: 184927.
Ibm Data Risk Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »