Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm bigfix compliance vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-1177
IBM BigFix Compliance 1.7 up to and including 1.9.91 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 123429.
Ibm Bigfix Compliance
5
CVSSv2
CVE-2017-1198
IBM BigFix Compliance 1.7 up to and including 1.9.91 (TEMA SUAv1 SCA SCM) stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 1...
Ibm Bigfix Compliance
3.5
CVSSv2
CVE-2017-1202
IBM BigFix Compliance 1.7 up to and including 1.9.91 (TEMA SUAv1 SCA SCM) is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IB...
Ibm Bigfix Compliance
4.3
CVSSv2
CVE-2017-1200
IBM BigFix Compliance 1.7 up to and including 1.9.91 (TEMA SUAv1 SCA SCM) does not validate, or incorrectly validates, a certificate.This weakness might allow an malicious user to spoof a trusted entity by using a man-in-the-middle (MITM) attack. The software might connect to a m...
Ibm Bigfix Compliance
4.3
CVSSv2
CVE-2017-1178
IBM Endpoint Manager for Security and Compliance 1.9.70 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...
Ibm Bigfix Security Compliance Analytics 1.9.70
4.3
CVSSv2
CVE-2017-1179
IBM BigFix Compliance Analytics 1.9.79 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 123431.
Ibm Bigfix Security Compliance Analytics 1.9.70
5
CVSSv2
CVE-2017-1197
IBM BigFix Compliance (TEMA SUAv1 SCA SCM) uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 123672.
Ibm Bigfix Security Compliance Analytics 1.9.70
2.1
CVSSv2
CVE-2017-1201
IBM BigFix Compliance Analytics 1.9.79 (TEMA SUAv1 SCA SCM) stores user credentials in clear text which can be read by a local user. IBM X-Force ID: 123676.
Ibm Bigfix Security Compliance Analytics 1.9.79
5
CVSSv2
CVE-2017-1196
IBM BigFix Compliance (TEMA SUAv1 SCA SCM) 1.9.70 does not require that users should have strong passwords by default, which makes it easier for malicious users to compromise user accounts. IBM X-Force ID: 123671.
Ibm Bigfix Security Compliance Analytics 1.9.70
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started