Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sterling partner engagement manager 6.1.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-40615
IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 23...
Ibm Sterling Partner Engagement Manager 6.1.2
Ibm Sterling Partner Engagement Manager 6.2.0
Ibm Sterling Partner Engagement Manager 6.2.1
8.8
CVSSv3
CVE-2022-22360
IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 could allow a remote authenticated malicious user to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and could result in in granting permission to...
Ibm Partner Engagement Manager
Ibm Partner Engagement Manager On Cloud\\/saas 22.2
7.5
CVSSv3
CVE-2023-43045
IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.2 could allow a remote user to perform unauthorized actions due to improper authentication. IBM X-Force ID: 266896.
Ibm Sterling Partner Engagement Manager 6.1.2
Ibm Sterling Partner Engagement Manager 6.2.0
Ibm Sterling Partner Engagement Manager 6.2.2
7.1
CVSSv3
CVE-2022-22358
IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-F...
Ibm Partner Engagement Manager
Ibm Partner Engagement Manager On Cloud\\/saas 22.2
6.5
CVSSv3
CVE-2022-34335
IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.1 could allow an authenticated user to exhaust server resources which could lead to a denial of service. IBM X-Force ID: 229705.
Ibm Sterling Partner Engagement Manager 6.1.2
Ibm Sterling Partner Engagement Manager 6.2.0
Ibm Sterling Partner Engagement Manager 6.2.1
6.5
CVSSv3
CVE-2022-22359
IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 220652.
Ibm Partner Engagement Manager
Ibm Partner Engagement Manager On Cloud\\/saas 22.2
5.4
CVSSv3
CVE-2023-38722
IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wi...
Ibm Sterling Partner Engagement Manager 6.1.2
Ibm Sterling Partner Engagement Manager 6.2.0
Ibm Sterling Partner Engagement Manager 6.2.2
5.4
CVSSv3
CVE-2022-22417
IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure w...
Ibm Partner Engagement Manager
Ibm Partner Engagement Manager On Cloud\\/saas 22.2
5.4
CVSSv3
CVE-2022-22416
IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated malicious user to send unauthorized requests from the system, potentially leading to network enumeration or facilitating ot...
Ibm Partner Engagement Manager
Ibm Partner Engagement Manager On Cloud\\/saas 22.2
3.3
CVSSv3
CVE-2022-34354
IBM Sterling Partner Engagement Manager 2.0 allows encrypted storage of client data to be stored locally which can be read by another user on the system. IBM X-Force ID: 230424.
Ibm Partner Engagement Manager 6.1.2
Ibm Partner Engagement Manager 6.2.0
Ibm Partner Engagement Manager 6.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »