Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm infosphere information server 11.7 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2020-4305
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote malicious user to execute arbitrary code on the system, caused by the deserialization of untrusted data. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulner...
Ibm Infosphere Information Server 11.3.0
Ibm Infosphere Information Server 11.5.0
Ibm Infosphere Information Server
Ibm Infosphere Information Server On Cloud 11.5.0.0
Ibm Infosphere Information Server On Cloud
7.5
CVSSv2
CVE-2022-31768
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database.
Ibm Infosphere Information Server 11.7
7.5
CVSSv2
CVE-2020-4347
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could be subject to attacks based on privilege escalation due to inappropriate file permissions for files used by WebSphere Application Server Network Deployment. IBM X-Force ID: 178412.
Ibm Infosphere Information Server 11.3
Ibm Infosphere Information Server 11.5
Ibm Infosphere Information Server 11.7
7.5
CVSSv2
CVE-2018-1994
IBM InfoSphere Information Server 11.5 and 11.7 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 154494.
Ibm Infosphere Information Server On Cloud 11.5
Ibm Infosphere Information Server On Cloud 11.7
Ibm Infosphere Metadata Asset Manager 11.7
Ibm Infosphere Metadata Asset Manager 11.5
7.2
CVSSv2
CVE-2022-22454
IBM InfoSphere Information Server 11.7 could allow a locally authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request.
Ibm Infosphere Information Server On Cloud 11.7
7.2
CVSSv2
CVE-2017-1350
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 could allow a user to escalate their privileges to administrator due to improper access controls. IBM X-Force ID: 126526.
Ibm Infosphere Information Server 11.3
Ibm Infosphere Information Server 11.7
Ibm Infosphere Information Server 9.1
Ibm Infosphere Information Server 11.5
6.8
CVSSv2
CVE-2021-29888
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 207123.
Ibm Infosphere Information Server 11.7
6.5
CVSSv2
CVE-2021-29730
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 201164.
Ibm Infosphere Information Server 11.7
6.4
CVSSv2
CVE-2021-38948
IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 211402.
Ibm Infosphere Information Server 11.7
6.4
CVSSv2
CVE-2018-1727
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 1476...
Ibm Infosphere Information Server 9.1
Ibm Infosphere Information Server 11.3
Ibm Infosphere Information Server 11.5
Ibm Infosphere Information Server 11.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »