Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm integration bus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-22356
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.23, 12.0.1.0 up to and including 12.0.9.0 and IBM Integration Bus for z/OS 10.1 up to and including 10.1.0.2store potentially sensitive information in log or trace files that could be read by a privileged user. IBM X-...
6.5
CVSSv3
CVE-2024-27265
IBM Integration Bus for z/OS 10.1 up to and including 10.1.0.3 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 284564.
Ibm Integration Bus
6.5
CVSSv3
CVE-2024-22332
The IBM Integration Bus for z/OS 10.1 up to and including 10.1.0.2 AdminAPI is vulnerable to a denial of service due to file system exhaustion. IBM X-Force ID: 279972.
Ibm Integration Bus
5.5
CVSSv3
CVE-2023-45176
IBM App Connect Enterprise 11.0.0.1 up to and including 11.0.0.23, 12.0.1.0 up to and including 12.0.10.0 and IBM Integration Bus 10.1 up to and including 10.1.0.1 are vulnerable to a denial of service for integration nodes on Windows. IBM X-Force ID: 247998.
Ibm Integration Bus 10.1
Ibm App Connect Enterprise
5.3
CVSSv3
CVE-2018-1801
IBM App Connect V11.0.0.0 through V11.0.0.1, IBM Integration Bus V10.0.0.0 through V10.0.0.13, IBM Integration Bus V9.0.0.0 through V9.0.0.10, and WebSphere Message Broker V8.0.0.0 through V8.0.0.9 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML ...
Ibm Integration Bus
Ibm App Connect
Ibm Websphere Message Broker
5.5
CVSSv3
CVE-2017-1418
IBM Integration Bus 9.0.0.0, 9.0.0.11, 10.0.0.0, and 10.0.0.14 (including IBM WebSphere Message Broker 8.0.0.0 and 8.0.0.9) has insecure permissions on certain files. A local attacker could exploit this vulnerability to modify or delete these files with an unknown impact. IBM X-F...
Ibm Integration Bus
Ibm Websphere Message Broker
5.6
CVSSv3
CVE-2017-1693
IBM Integration Bus 9.0 and 10.0 could allow an attacker that has captured a valid session id to hijack another users session during a small timeframe before the session times out. IBM X-Force ID: 134164.
Ibm Integration Bus 10.0.0.1
Ibm Integration Bus 10.0.0.3
Ibm Integration Bus 10.0.0.6
Ibm Integration Bus 9.0.0.4
Ibm Integration Bus 9.0.0.8
Ibm Integration Bus 9.0.0.6
Ibm Integration Bus 10.0.0.4
Ibm Integration Bus 10.0.0.8
Ibm Integration Bus 10.0.0.9
Ibm Integration Bus 10.0.0.5
Ibm Integration Bus 10.0
Ibm Integration Bus 9.0.0.0
Ibm Integration Bus 9.0.0.1
Ibm Integration Bus 9.0.0.2
Ibm Integration Bus 9.0.0.3
Ibm Integration Bus 10.0.0.0
Ibm Integration Bus 10.0.0.2
Ibm Integration Bus 10.0.0.7
Ibm Integration Bus 9.0.0.5
Ibm Integration Bus 9.0.0.7
8.1
CVSSv3
CVE-2017-1694
IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be read by an attacker using man in the middle techniques. IBM X-Force ID: 134165.
Ibm Integration Bus 10.0.0.5
Ibm Integration Bus 9.0.0.0
Ibm Integration Bus 9.0.0.2
Ibm Integration Bus 10.0.0.3
Ibm Integration Bus 10.0.0.4
Ibm Integration Bus 10.0.0.7
Ibm Integration Bus 9.0.0.3
Ibm Integration Bus 9.0.0.6
Ibm Integration Bus 9.0.0.7
Ibm Integration Bus 9.0.0.9
Ibm Integration Bus 10.0.0.8
Ibm Integration Bus 9.0.0.5
Ibm Integration Bus 10.0.0.0
Ibm Integration Bus 9.0.0.8
Ibm Integration Bus 10.0.0.1
Ibm Integration Bus 10.0.0.6
Ibm Integration Bus 9.0.0.1
Ibm Integration Bus 9.0.0.4
Ibm Integration Bus 10.0.0.2
Ibm Integration Bus 10.0.0.9
5.3
CVSSv3
CVE-2017-1126
IBM WebSphere Message Broker (IBM Integration Bus 9.0 and 10.0) could allow an unauthorized user to obtain sensitive information about software versions that could lead to further attacks. IBM X-Force ID: 121341.
Ibm Integration Bus 9.0.0.1
Ibm Integration Bus 9.0.0.4
Ibm Integration Bus 10.0.0.0
Ibm Integration Bus 10.0.0.2
Ibm Integration Bus 10.0.0.4
Ibm Integration Bus 10.0.0.9
Ibm Websphere Message Broker 8.0.0.1
Ibm Websphere Message Broker 8.0.0.8
Ibm Integration Bus 9.0.0.5
Ibm Integration Bus 9.0.0.6
Ibm Integration Bus 9.0.0.7
Ibm Integration Bus 9.0.0.8
Ibm Websphere Message Broker 8.0.0.3
Ibm Websphere Message Broker 8.0.0.4
Ibm Websphere Message Broker 8.0.0.5
Ibm Websphere Message Broker 8.0.0.6
Ibm Integration Bus 10.0.0.5
Ibm Integration Bus 10.0.0.6
Ibm Integration Bus 10.0.0.7
Ibm Integration Bus 10.0.0.8
Ibm Integration Bus 9.0.0.0
Ibm Integration Bus 9.0.0.2
2.5
CVSSv3
CVE-2017-1144
IBM WebSphere Message Broker could allow a local user with specialized access to prevent the message broker from starting. IBM X-Force ID: 122033.
Ibm Websphere Message Broker 8.0.0.8
Ibm Websphere Message Broker 8.0.0.5
Ibm Websphere Message Broker 8.0.0.6
Ibm Websphere Message Broker 8.0
Ibm Websphere Message Broker 8.0.0.1
Ibm Websphere Message Broker 8.0.0.2
Ibm Websphere Message Broker 8.0.0.3
Ibm Websphere Message Broker 8.0.0.4
Ibm Websphere Message Broker 8.0.0.7
Ibm Integration Bus 10.0.0.6
Ibm Integration Bus 9.0
Ibm Integration Bus 9.0.0.2
Ibm Integration Bus 10.0.0.4
Ibm Integration Bus 9.0.0.5
Ibm Integration Bus 10.0
Ibm Integration Bus 10.0.0.1
Ibm Integration Bus 10.0.0.2
Ibm Integration Bus 10.0.0.7
Ibm Integration Bus 9.0.0.3
Ibm Integration Bus 9.0.0.6
Ibm Integration Bus 9.0.0.7
Ibm Integration Bus 10.0.0.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »