Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm license metric tool 9.1.0.1 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2014-4776
IBM License Metric Tool 9 prior to 9.1.0.2 does not have an off autocomplete attribute for authentication fields, which makes it easier for remote malicious users to obtain access by leveraging an unattended workstation.
Ibm License Metric Tool 9.0
Ibm License Metric Tool 9.0.1
Ibm License Metric Tool 9.1.0.1
4
CVSSv2
CVE-2015-4929
IBM License Metric Tool 9 prior to 9.2.1.0 and Endpoint Manager for Software Use Analysis 9 prior to 9.2.1.0 allow remote authenticated users to bypass intended access restrictions and obtain sensitive information via a REST API request.
Ibm License Metric Tool 9.2.0
Ibm License Metric Tool 9.1.0.2
Ibm License Metric Tool 9.0
Ibm License Metric Tool 9.1.0.1
Ibm License Metric Tool 9.0.1
4.3
CVSSv2
CVE-2014-4778
IBM License Metric Tool 9 prior to 9.1.0.2 and Endpoint Manager for Software Use Analysis 9 prior to 9.1.0.2 do not send an X-Frame-Options HTTP header in response to requests for the login page, which allows remote malicious users to conduct clickjacking attacks via vectors invo...
Ibm Endpoint Manager Family 9.0.1
Ibm License Metric Tool 9.0
Ibm License Metric Tool 9.0.1
Ibm License Metric Tool 9.1.0.1
Ibm Endpoint Manager Family 9.1.0
6.8
CVSSv2
CVE-2014-4774
Cross-site request forgery (CSRF) vulnerability in the login page in IBM License Metric Tool 9 prior to 9.1.0.2 and Endpoint Manager for Software Use Analysis 9 prior to 9.1.0.2 allows remote malicious users to hijack the authentication of arbitrary users via vectors involving a ...
Ibm License Metric Tool 9.0.1
Ibm Endpoint Manager Family 9.0.1
Ibm License Metric Tool 9.0
Ibm License Metric Tool 9.1.0.1
Ibm Endpoint Manager Family 9.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started