Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere datapower xc10 appliance - vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2014-3060
Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote malicious users to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network and capturing a session cookie.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance -
10
CVSSv2
CVE-2014-3059
Unspecified vulnerability in the Administrative Console on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote malicious users to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance -
10
CVSSv2
CVE-2013-5403
Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.0 up to and including 2.5.0.1 allows remote malicious users to obtain administrative access via unknown vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
9.3
CVSSv2
CVE-2013-0600
Unspecified vulnerability on IBM WebSphere DataPower XC10 Appliance devices 2.0 and 2.1 up to and including 2.1 FP3 allows remote malicious users to bypass authentication and perform administrative actions via unknown vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.3
Ibm Websphere Datapower Xc10 Appliance -
9
CVSSv2
CVE-2012-5759
The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 up to and including 2.0.0.3 and 2.1.0.0 up to and including 2.1.0.2 allows remote authenticated users to bypass intended administrative-role requirements and perform arbitrary JMX operations via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance 2.0.0.1
Ibm Websphere Datapower Xc10 Appliance 2.0.0.2
Ibm Websphere Datapower Xc10 Appliance 2.0.0.3
Ibm Websphere Datapower Xc10 Appliance 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance 2.0.0.0
7.8
CVSSv2
CVE-2012-5758
The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 up to and including 2.0.0.3 and 2.1.0.0 up to and including 2.1.0.2 does not require authentication for an unspecified interface, which allows remote malicious users to cause a denial of service (process exit) via unknown vectors...
Ibm Websphere Datapower Xc10 Appliance 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance 2.0.0.1
Ibm Websphere Datapower Xc10 Appliance 2.0.0.2
Ibm Websphere Datapower Xc10 Appliance 2.0.0.3
Ibm Websphere Datapower Xc10 Appliance 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance 2.0.0.0
6.8
CVSSv2
CVE-2015-1893
The IBM WebSphere DataPower XC10 appliance 2.1 prior to 2.1.0.3 allows remote malicious users to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
6
CVSSv2
CVE-2014-3058
Cross-site request forgery (CSRF) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
4.3
CVSSv2
CVE-2012-5756
The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 up to and including 2.0.0.3 and 2.1.0.0 up to and including 2.1.0.2, when a collective configuration is enabled, has a single secret key that is shared across different customers' installations, which allows remote malicious...
Ibm Websphere Datapower Xc10 Appliance 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance 2.0.0.2
Ibm Websphere Datapower Xc10 Appliance 2.0.0.3
Ibm Websphere Datapower Xc10 Appliance 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance 2.0.0.0
Ibm Websphere Datapower Xc10 Appliance 2.0.0.1
4
CVSSv2
CVE-2014-6138
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to bypass intended grid-data access restrictions via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »