Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere datapower xc10 appliance firmware 2.5.0.0 vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2014-3058
Cross-site request forgery (CSRF) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
4
CVSSv2
CVE-2014-6138
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to bypass intended grid-data access restrictions via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
3.5
CVSSv2
CVE-2014-6163
Cross-site scripting (XSS) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
2.1
CVSSv2
CVE-2015-1970
The IBM WebSphere DataPower XC10 appliance 2.1 up to and including 2.1.0.3 and 2.5 up to and including 2.5.0.4 retains data on SSD cards, which might allow physically proximate malicious users to obtain sensitive information by extracting a card and attaching it elsewhere.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.4
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.2
2.1
CVSSv2
CVE-2014-6143
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain sensitive information by reading a response.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started