Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm spectrum control vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-0230
Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution.
Apache Struts
Oracle Financial Services Market Risk Measurement And Management 8.0.6
Oracle Communications Policy Management 12.5.0
Oracle Financial Services Data Integration Hub 8.0.6
Oracle Financial Services Data Integration Hub 8.0.3
Oracle Mysql Enterprise Monitor
10 Github repositories
1 Article
9.1
CVSSv3
CVE-2021-39063
IBM Spectrum Protect Plus 10.1.0.0 up to and including 10.1.8.x uses Cross-Origin Resource Sharing (CORS) which could allow an malicious user to carry out privileged actions and retrieve sensitive information due to a misconfiguration in access control headers. IBM X-Force ID: 21...
Ibm Spectrum Protect Plus
8.8
CVSSv3
CVE-2022-22472
IBM Spectrum Protect Plus Container Backup and Restore (10.1.5 up to and including 10.1.10.2 for Kubernetes and 10.1.7 up to and including 10.1.10.2 for Red Hat OpenShift) could allow a remote malicious user to bypass IBM Spectrum Protect Plus role based access control restrictio...
Ibm Spectrum Protect Plus Container Backup And Restore
8.8
CVSSv3
CVE-2020-4700
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.2 and 5.2.0.0 up to and including 5.2.6.5 could allow an authenticated user belonging to a specific user group to create a user or group with administrative privileges. IBM X-Force ID: 187077.
Ibm Sterling B2b Integrator
8.8
CVSSv3
CVE-2019-4071
IBM Tivoli Storage Productivity Center (IBM Spectrum Control Standard Edition 5.2.1 up to and including 5.2.17) could allow a remote malicious user to execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 157063.
Ibm Tivoli Storage Productivity Center
Ibm Spectrum Control
8.8
CVSSv3
CVE-2016-8941
IBM Tivoli Storage Productivity Center is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts.
Ibm Spectrum Control 5.2.8
Ibm Spectrum Control 5.2.9
Ibm Spectrum Control 5.2.10
Ibm Spectrum Control 5.2.11
Ibm Tivoli Storage Productivity Center 5.2.5.1
Ibm Tivoli Storage Productivity Center 5.2.6.0
Ibm Tivoli Storage Productivity Center 5.2.7.0
Ibm Tivoli Storage Productivity Center 5.2.7.1
Ibm Tivoli Storage Productivity Center 5.2.0
Ibm Tivoli Storage Productivity Center 5.2.3.0
Ibm Tivoli Storage Productivity Center 5.2.4.1
Ibm Tivoli Storage Productivity Center 5.2.0.0
Ibm Tivoli Storage Productivity Center 5.2.1.0
Ibm Tivoli Storage Productivity Center 5.2.1.1
Ibm Tivoli Storage Productivity Center 5.2.2.0
Ibm Tivoli Storage Productivity Center 5.2.4.0
Ibm Tivoli Storage Productivity Center 5.2.5.0
7.8
CVSSv3
CVE-2021-29740
IBM Spectrum Scale 5.0.0 up to and including 5.0.5.6 and 5.1.0 up to and including 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system p...
Ibm Spectrum Scale
7.8
CVSSv3
CVE-2021-20532
IBM Spectrum Protect Client 8.1.0.0 up to and including 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 198811.
Ibm Spectrum Protect Backup-archive Client
Ibm Spectrum Protect For Virtual Environments
7.8
CVSSv3
CVE-2020-8177
curl 7.20.0 up to and including 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used.
Haxx Curl
Debian Debian Linux 10.0
Fujitsu M10-1 Firmware
Fujitsu M10-4 Firmware
Fujitsu M10-4s Firmware
Fujitsu M12-1 Firmware
Fujitsu M12-2 Firmware
Fujitsu M12-2s Firmware
Siemens Sinec Infrastructure Network Services
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
7.8
CVSSv3
CVE-2020-8252
The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14.9.0 used within Node.js incorrectly determined the buffer size which can result in a buffer overflow if the resolved path is longer than 256 bytes.
Nodejs Node.js
Opensuse Leap 15.2
Fedoraproject Fedora 33
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »