Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm curam social program management vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-22317
IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281.
Ibm Curam Social Program Management 8.0.0
Ibm Curam Social Program Management 8.0.1
9.8
CVSSv3
CVE-2022-22318
IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
Ibm Curam Social Program Management 8.0.0
Ibm Curam Social Program Management 8.0.1
9.1
CVSSv3
CVE-2016-6111
IBM Curam Social Program Management 6.0 and 7.0 are vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all availab...
Ibm Curam Social Program Management 5.2
Ibm Curam Social Program Management 6.0
Ibm Curam Social Program Management 6.0.0
Ibm Curam Social Program Management 6.0.4.3
Ibm Curam Social Program Management 6.0.4.8
Ibm Curam Social Program Management 6.0.4.2
Ibm Curam Social Program Management 6.0.4.0
Ibm Curam Social Program Management 6.0.4.1
Ibm Curam Social Program Management 6.0.4.7
Ibm Curam Social Program Management 6.0.4.6
Ibm Curam Social Program Management 6.0.4.4
Ibm Curam Social Program Management 6.0.4.5
Ibm Curam Social Program Management 6.0.5.8
Ibm Curam Social Program Management 6.0.5.9
Ibm Curam Social Program Management 6.0.5.7
Ibm Curam Social Program Management 6.0.5.6
Ibm Curam Social Program Management 6.0.5
Ibm Curam Social Program Management 6.0.5.0
Ibm Curam Social Program Management 6.0.5.3
Ibm Curam Social Program Management 6.0.5.2
Ibm Curam Social Program Management 6.0.5.4
Ibm Curam Social Program Management 6.0.5.5
8.8
CVSSv3
CVE-2020-4942
IBM Curam Social Program Management 7.0.9 and 7.0.11 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 191942.
Ibm Curam Social Program Management 7.0.9.0
Ibm Curam Social Program Management 7.0.11.0
8.8
CVSSv3
CVE-2018-2001
IBM Cram Social Program Management 6.1.1, 6.2.0, 7.0.4, and 7.0.5 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 154891.
Ibm Curam Social Program Management
Ibm Curam Social Program Management 7.0.5.0
8.8
CVSSv3
CVE-2014-8903
IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 prior to 6.0.4.5iFix10 and 6.0.5 prior to 6.0.5.6 allows remote authenticated users to load arbitrary Java classes via unspecified vectors.
Ibm Curam Social Program Management 6.0.5.8
Ibm Curam Social Program Management 6.0.4.3
Ibm Curam Social Program Management 6.0.5.9
Ibm Curam Social Program Management 6.0
Ibm Curam Social Program Management 6.0.4.8
Ibm Curam Social Program Management 6.0.4.2
Ibm Curam Social Program Management 6.0.5.7
Ibm Curam Social Program Management 6.0.4.0
Ibm Curam Social Program Management 6.0.4.1
Ibm Curam Social Program Management 6.0.5.6
Ibm Curam Social Program Management 6.0.5
Ibm Curam Social Program Management 6.0.4.9
Ibm Curam Social Program Management 6.0.5.0
Ibm Curam Social Program Management 6.0.5.3
Ibm Curam Social Program Management 6.0.5.2
Ibm Curam Social Program Management 6.0.4.7
Ibm Curam Social Program Management 6.0.5.4
Ibm Curam Social Program Management 6.0.5.10
Ibm Curam Social Program Management 6.0.5.5
Ibm Curam Social Program Management 6.0.5.1
Ibm Curam Social Program Management 6.0.4.6
Ibm Curam Social Program Management 6.0.4.4
8.1
CVSSv3
CVE-2020-4779
A HTTP Verb Tampering vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. By sending a specially-crafted request, an attacker could exploit this vulnerability to bypass security access controls. IBM X-Force ID: 189156.
Ibm Curam Social Program Management 7.0.9.0
Ibm Curam Social Program Management 7.0.10.0
8.1
CVSSv3
CVE-2020-4772
An XML External Entity Injection (XXE) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. A remote attacker could exploit this vulnerability to expose sensitive information, denial of service, server side request forgery or consume memory resources. IB...
Ibm Curam Social Program Management 7.0.9.0
Ibm Curam Social Program Management 7.0.10.0
7.5
CVSSv3
CVE-2020-4778
IBM Curam Social Program Management 7.0.9 and 7.0.10 uses MD5 algorithm for hashing token in a single instance which less safe than default SHA-256 cryptographic algorithm used throughout the Cúram application. IBM X-Force ID: 189156.
Ibm Curam Social Program Management 7.0.9.0
Ibm Curam Social Program Management 7.0.10.0
7.5
CVSSv3
CVE-2020-4776
A path traversal vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted file path in URL request to view arbitrary files on the syst...
Ibm Curam Social Program Management 7.0.9.0
Ibm Curam Social Program Management 7.0.10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »