Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm bigfix platform vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2016-6082
IBM BigFix Platform could allow a remote malicious user to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary code on the system.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.5
9.9
CVSSv3
CVE-2019-4013
IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID: 155887.
Ibm Bigfix Platform
1 EDB exploit
9.8
CVSSv3
CVE-2018-1475
IBM BigFix Platform 9.2 and 9.5 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 140756.
Ibm Bigfix Platform
9.8
CVSSv3
CVE-2017-1221
IBM Tivoli Endpoint Manager (IBM BigFix 9.2 and 9.5) does not require that users should have strong passwords by default, which makes it easier for malicious users to compromise user accounts. IBM X-Force ID: 123861.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.5
8.8
CVSSv3
CVE-2018-1479
IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 140761.
Ibm Bigfix Platform
8.8
CVSSv3
CVE-2016-0295
Cross-site request forgery (CSRF) vulnerability in the IBM BigFix Platform 9.0, 9.1, 9.2, and 9.5 prior to 9.5.2 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences. IBM X-Force ID: 111363.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform
8.8
CVSSv3
CVE-2016-0291
IBM BigFix Platform 9.0, 9.1 prior to 9.1.8, and 9.2 prior to 9.2.8 allow remote authenticated users to execute arbitrary commands by leveraging report server access. IBM X-Force ID: 111302.
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform
8.8
CVSSv3
CVE-2017-1218
IBM Tivoli Endpoint Manager is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 123858.
Ibm Bigfix Platform 9.5.5
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.5.6
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2.6
8.1
CVSSv3
CVE-2016-0396
IBM Tivoli Endpoint Manager could allow a user under special circumstances to inject commands that would be executed with unnecessary higher privileges than expected.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.5
7.8
CVSSv3
CVE-2017-1231
IBM BigFix Platform 9.5 - 9.5.9 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 123910.
Ibm Bigfix Platform
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »