Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm b2b advanced communications 1.0.0.1 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2015-4973
Cross-site scripting (XSS) vulnerability in IBM Multi-Enterprise Integration Gateway 1.x up to and including 1.0.0.1 and B2B Advanced Communications 1.0.0.2 and 1.0.0.3 prior to 1.0.0.3_2 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm B2b Advanced Communications 1.0.0.1Ibm B2b Advanced Communications 1.0.0.3Ibm B2b Advanced Communications 1.0.0.2
NA
CVE-2015-5022
IBM Multi-Enterprise Integration Gateway 1.x up to and including 1.0.0.1 and B2B Advanced Communications 1.0.0.2 and 1.0.0.3 prior to 1.0.0.3_2, when access by guests is enabled, place an internal hostname and a payload path in a response, which allows remote authenticated users ...
Ibm B2b Advanced Communications 1.0.0.1Ibm B2b Advanced Communications 1.0.0.2Ibm B2b Advanced Communications 1.0.0.3
4.3
CVSSv3
CVE-2015-7445
IBM Multi-Enterprise Integration Gateway 1.0 up to and including 1.0.0.1 and B2B Advanced Communications 1.x prior to 1.0.0.4, when guest access is configured, allow remote authenticated users to obtain sensitive information by reading error messages in responses.
Ibm B2b Advanced Communications 1.0.0.3Ibm B2b Advanced Communications 1.0.0.2Ibm B2b Advanced Communications 1.0.0.1Ibm B2b Advanced Communications 1.0Ibm Multi-enterprise Integration Gateway 1.0.0
7.5
CVSSv3
CVE-2016-0341
IBM Multi-Enterprise Integration Gateway 1.0 up to and including 1.0.0.1 and B2B Advanced Communications 1.0.0.2 up to and including 1.0.0.4 do not require HTTPS, which might allow remote malicious users to obtain sensitive information by sniffing the network.
Ibm B2b Advanced Communications 1.0.0.1Ibm B2b Advanced Communications 1.0.0.3Ibm B2b Advanced Communications 1.0.0.2Ibm B2b Advanced Communications 1.0Ibm Multi-enterprise Integration Gateway 1.0.0
5.4
CVSSv3
CVE-2023-22595
IBM B2B Advanced Communications 1.0.0.0 and IBM Multi-Enterprise Integration Gateway 1.0.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cr...
Ibm Multi-enterprise Integration Gateway 1.0.0.1Ibm B2b Advanced Communications
6.5
CVSSv3
CVE-2023-24971
IBM B2B Advanced Communications 1.0.0.0 and IBM Multi-Enterprise Integration Gateway 1.0.0.1 could allow a user to cause a denial of service due to the deserializing of untrusted serialized Java objects. IBM X-Force ID: 246976.
Ibm Multi-enterprise Integration Gateway 1.0.0.1Ibm B2b Advanced Communications
5.4
CVSSv3
CVE-2016-5892
Cross-site scripting (XSS) vulnerability in IBM 10x, as used in Multi-Enterprise Integration Gateway 1.x up to and including 1.0.0.1 and B2B Advanced Communications prior to 1.0.0.5_2, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vector...
Ibm Multi-enterprise Integration Gateway 1.0.0Ibm Multi-enterprise Integration Gateway 1.0.0.1Ibm B2b Advanced Communications
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2024-34001CVE-2024-37018LFICVE-2024-1275CVE-2024-1086CSRFCVE-2024-31030CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook