Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm smartcloud analytics log analysis vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2013-6738
Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 prior to 1.2.0.0-CSI-SCALA-IF0003 allows remote malicious users to inject arbitrary web script or HTML via an invalid query parameter in a response from an OAuth authorization endpoint.
Ibm Smartcloud Analytics Log Analysis 1.1.0
Ibm Smartcloud Analytics Log Analysis 1.2.0
4.9
CVSSv2
CVE-2019-4216
IBM SmartCloud Analytics 1.3.1 up to and including 1.3.5 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM X-Force ID: 159187.
Ibm Smartcloud Analytics Log Analysis
3.6
CVSSv2
CVE-2019-4243
IBM SmartCloud Analytics 1.3.1 up to and including 1.3.5 allows unauthorized disclosure of information like accessing solrconfig.xml and could allow an malicious user to perform disruptive administrator tasks. IBM X-Force ID: 159517.
Ibm Smartcloud Analytics Log Analysis
6.4
CVSSv2
CVE-2019-4244
IBM SmartCloud Analytics 1.3.1 up to and including 1.3.5 could allow a remote malicious user to gain unauthorized information and unrestricted control over Zookeeper installations due to missing authentication. IBM X-Force ID: 159518.
Ibm Smartcloud Analytics Log Analysis
4.3
CVSSv2
CVE-2019-4214
IBM SmartCloud Analytics 1.3.1 up to and including 1.3.5 does not set the secure attribute on authorization tokens or session cookies. This could allow an malicious user to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 159185.
Ibm Smartcloud Analytics Log Analysis
4.3
CVSSv2
CVE-2019-4215
IBM SmartCloud Analytics 1.3.1 up to and including 1.3.5 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click act...
Ibm Smartcloud Analytics Log Analysis
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started