Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm infosphere information server 11.3 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2016-6059
IBM InfoSphere Information Server is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resou...
Ibm Infosphere Information Server 11.3.1Ibm Infosphere Information Server 11.3Ibm Infosphere Datastage 11.3.1Ibm Infosphere Datastage 11.3Ibm Infosphere Information Server On Cloud 11.5Ibm Infosphere Information Server 11.5Ibm Infosphere Datastage 11.5
3.5
CVSSv2
CVE-2016-8999
IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows malicious users to render a page in quirks mode thereby facilitating an malicious user to inject malicious CSS.
Ibm Infosphere Datastage 11.3Ibm Infosphere Datastage 11.5Ibm Infosphere Information Server 11.5Ibm Infosphere Information Server On Cloud 11.5Ibm Infosphere Datastage 8.7Ibm Infosphere Datastage 9.1Ibm Infosphere Information Server 8.7Ibm Infosphere Information Server 9.1Ibm Infosphere Information Server 11.3
3.5
CVSSv2
CVE-2019-4237
A Cross-Frame Scripting vulnerability in IBM InfoSphere Information Server 11.3, 11.5, and 11.7 can allow an malicious user to load the vulnerable application inside an HTML iframe tag on a malicious page. IBM X-Force ID: 159419.
Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.5Ibm Infosphere Information Server 11.7Ibm Infosphere Information Governance Catalog 11.3Ibm Infosphere Information Governance Catalog 11.5Ibm Infosphere Information Governance Catalog 11.7Ibm Infosphere Information Server On Cloud 11.5Ibm Infosphere Information Server On Cloud 11.7
4.3
CVSSv2
CVE-2018-1432
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to cross-frame scripting which is a vulnerability that allows an malicious user to load Information Server components inside an HTML iframe tag on a malicious page. The attacker could use this weakness to d...
Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.7Ibm Infosphere Information Server 9.1Ibm Infosphere Information Server 11.5
6.4
CVSSv2
CVE-2018-1727
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 1476...
Ibm Infosphere Information Server 9.1Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.5Ibm Infosphere Information Server 11.7
7.2
CVSSv2
CVE-2017-1350
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 could allow a user to escalate their privileges to administrator due to improper access controls. IBM X-Force ID: 126526.
Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.7Ibm Infosphere Information Server 9.1Ibm Infosphere Information Server 11.5
4.6
CVSSv2
CVE-2017-1469
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a local user to gain elevated privileges by placing arbitrary files in installation directories. IBM X-Force ID: 128468.
Ibm Infosphere Information Server 9.1Ibm Infosphere Information Server 11.5Ibm Infosphere Information Server 11.3
4
CVSSv2
CVE-2017-1495
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a privileged user to cause a memory dump that could contain highly sensitive information including access credentials. IBM X-Force ID: 128693.
Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.5Ibm Infosphere Information Server 9.1
4.3
CVSSv2
CVE-2018-1454
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using ...
Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.7Ibm Infosphere Information Server 11.5
7.5
CVSSv2
CVE-2020-4347
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could be subject to attacks based on privilege escalation due to inappropriate file permissions for files used by WebSphere Application Server Network Deployment. IBM X-Force ID: 178412.
Ibm Infosphere Information Server 11.3Ibm Infosphere Information Server 11.5Ibm Infosphere Information Server 11.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975CVE-2024-2961CVE-2024-20380XML injectionHTML injectionCVE-2024-29204CVE-2023-51795memory leakCVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook