Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security directory server 6.4.0 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2019-4520
IBM Security Directory Server 6.4.0 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 165178.
Ibm Security Directory Server 6.4.0
516
VMScore
CVE-2019-4538
IBM Security Directory Server 6.4.0 could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redir...
Ibm Security Directory Server 6.4.0
490
VMScore
CVE-2019-4539
IBM Security Directory Server 6.4.0 does not properly neutralize special elements that are used in XML, allowing malicious users to modify the syntax, content, or commands of the XML before it is processed by an end system. IBM X-Force ID: 165812.
Ibm Security Directory Server 6.4.0
383
VMScore
CVE-2019-4542
IBM Security Directory Server 6.4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
Ibm Security Directory Server 6.4.0
445
VMScore
CVE-2019-4549
IBM Security Directory Server 6.4.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 165951.
Ibm Security Directory Server 6.4.0
NA
CVE-2022-33161
IBM Security Directory Server 6.4.0 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle t...
Ibm Security Directory Server 6.4.0.0
Ibm Security Directory Integrator 7.2.0
Ibm Security Verify Directory 10.0.0
Ibm Security Directory Suite 8.0.1
409
VMScore
CVE-2015-1975
The web administration tool in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, and 6.3 before iFix 37 and IBM Security Directory Server 6.3.1 before iFix 11 and 6.4 before iFix 2 allows local users to gain privileges via vectors re...
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.4.0
Ibm Tivoli Directory Server 6.3.1.0
NA
CVE-2022-32755
IBM Security Directory Server 6.4.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 228505.
Ibm Security Directory Server 6.4.0.0
Ibm Security Verify Directory 10.0.0
Ibm Security Directory Suite 8.0.1
383
VMScore
CVE-2015-1972
IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote malicious users to obtain sensitive error-log information via a crafted POST request.
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.1.0
Ibm Tivoli Directory Server 6.4.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.3.0.0
578
VMScore
CVE-2015-1974
The web administration tool in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote authenticated users to bypass intended command restrictions via unspecifie...
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.1.0
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.4.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »