Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm cloud pak for applications vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-20423
IBM Cloud Pak for Applications 4.3 could allow an authenticated user gain escalated privilesges due to improper application permissions. IBM X-Force ID: 196308.
Ibm Cloud Pak For Applications
7.5
CVSSv3
CVE-2021-20360
IBM Cloud Pak for Applications 4.3 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 195031.
Ibm Cloud Pak For Applications 4.3
7.5
CVSSv3
CVE-2021-20422
IBM Cloud Pak for Applications 4.3 could disclose sensitive information to a malicious attacker by accessing data stored in memory. IBM X-Force ID: 196304.
Ibm Cloud Pak For Applications
7.5
CVSSv3
CVE-2020-4432
Certain IBM Aspera applications are vulnerable to command injection after valid authentication, which could allow an attacker with intimate knowledge of the system to execute commands in a SOAP API. IBM X-Force ID: 180810.
Ibm Aspera Application Platform On Demand
Ibm Aspera Faspex On Demand
Ibm Aspera High-speed Transfer Endpoint
Ibm Aspera High-speed Transfer Server
Ibm Aspera High-speed Transfer Server For Cloud Pak For Integration
Ibm Aspera Proxy Server
Ibm Aspera Server On Demand
Ibm Aspera Shares On Demand
Ibm Aspera Streaming
Ibm Aspera Transfer Cluster Manager
7.5
CVSSv3
CVE-2020-4433
Certain IBM Aspera applications are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker with intimate knowledge of the server to execute arbitrary code on the system with the privileges of root or cause server to cra...
Ibm Aspera Application Platform On Demand
Ibm Aspera Faspex On Demand
Ibm Aspera High-speed Transfer Endpoint
Ibm Aspera High-speed Transfer Server
Ibm Aspera High-speed Transfer Server For Cloud Pak For Integration
Ibm Aspera Proxy Server
Ibm Aspera Server On Demand
Ibm Aspera Shares On Demand
Ibm Aspera Streaming
Ibm Aspera Transfer Cluster Manager
7.5
CVSSv3
CVE-2020-4435
Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. ...
Ibm Aspera Application Platform On Demand
Ibm Aspera Faspex On Demand
Ibm Aspera High-speed Transfer Endpoint
Ibm Aspera High-speed Transfer Server
Ibm Aspera High-speed Transfer Server For Cloud Pak For Integration
Ibm Aspera Proxy Server
Ibm Aspera Server On Demand
Ibm Aspera Shares On Demand
Ibm Aspera Streaming
Ibm Aspera Transfer Cluster Manager
7.5
CVSSv3
CVE-2020-4436
Certain IBM Aspera applications are vulnerable to buffer overflow after valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code through a service. IBM X-Force ID: 180902.
Ibm Aspera Application Platform On Demand
Ibm Aspera Faspex On Demand
Ibm Aspera High-speed Transfer Endpoint
Ibm Aspera High-speed Transfer Server
Ibm Aspera High-speed Transfer Server For Cloud Pak For Integration
Ibm Aspera Proxy Server
Ibm Aspera Server On Demand
Ibm Aspera Shares On Demand
Ibm Aspera Streaming
Ibm Aspera Transfer Cluster Manager
7.5
CVSSv3
CVE-2020-4434
Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallb...
Ibm Aspera Application Platform On Demand
Ibm Aspera Faspex On Demand
Ibm Aspera High-speed Transfer Endpoint
Ibm Aspera High-speed Transfer Server
Ibm Aspera High-speed Transfer Server For Cloud Pak For Integration
Ibm Aspera Proxy Server
Ibm Aspera Server On Demand
Ibm Aspera Shares On Demand
Ibm Aspera Streaming
Ibm Aspera Transfer Cluster Manager
5.9
CVSSv3
CVE-2021-20369
IBM Cloud Pak for Applications 4.3 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 195361.
Ibm Cloud Pak For Applications
5.4
CVSSv3
CVE-2021-20361
IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
Ibm Cloud Pak For Applications 4.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »