Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm data risk manager 2.0.6 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-4429
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote attacker could exploit this vulnerability to login and execute arbitrary code on the system with root privileges. IBM X-Force ID: 180534.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
1 Article
9
CVSSv2
CVE-2020-4620
IBM Data Risk Manager (iDNA) 2.0.6 could allow a remote authenticated malicious user to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially-crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malici...
Ibm Data Risk Manager
9
CVSSv2
CVE-2020-4427
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote malicious user to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to bypass the...
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
Ibm Data Risk Manager 2.0.1
1 Article
9
CVSSv2
CVE-2020-4428
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated malicious user to execute arbitrary commands on the system. IBM X-Force ID: 180533.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
1 Article
6.5
CVSSv2
CVE-2020-4611
IBM Data Risk Manager (iDNA) 2.0.6 could allow an authenticated user to bypass security and execute actions reserved for admins. IBM X-Force ID: 184922.
Ibm Data Risk Manager
6.5
CVSSv2
CVE-2020-4621
IBM Data Risk Manager (iDNA) 2.0.6 could allow an authenticated user to escalate their privileges to administrator due to insufficient authorization checks. IBM X-Force ID: 184981.
Ibm Data Risk Manager
5.8
CVSSv2
CVE-2020-4617
IBM Data Risk Manager (iDNA) 2.0.6 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 184930.
Ibm Data Risk Manager
5
CVSSv2
CVE-2021-38862
IBM Data Risk Manager (iDNA) 2.0.6 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 207980.
Ibm Data Risk Manager 2.0.6
5
CVSSv2
CVE-2020-4622
IBM Data Risk Manager (iDNA) 2.0.6 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 184983.
Ibm Data Risk Manager
5
CVSSv2
CVE-2020-4613
IBM Data Risk Manager (iDNA) 2.0.6 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 184925.
Ibm Data Risk Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »