Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere extreme scale 7.1.1 vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2015-7418
IBM WebSphere eXtreme Scale and the WebSphere DataPower XC10 Appliance allow some sensitive data to linger in memory instead of being overwritten which could allow a local user with administrator privileges to obtain sensitive information.
Ibm Websphere Extreme Scale 8.5
Ibm Websphere Extreme Scale 8.6
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
6.1
CVSSv3
CVE-2016-0400
CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3, 7.1.1 prior to 7.1.1.1, 8.5 prior to 8.5.0.3, and 8.6 prior to 8.6.0.8 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 8.6.0.1
Ibm Websphere Extreme Scale 8.6.0.4
Ibm Websphere Extreme Scale 8.6.0.6
Ibm Websphere Extreme Scale 8.6.0.5
Ibm Websphere Extreme Scale 8.5.0.1
Ibm Websphere Extreme Scale 8.5.0
Ibm Websphere Extreme Scale 8.6.0.3
Ibm Websphere Extreme Scale 8.6.0.7
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 8.6.0.2
Ibm Websphere Extreme Scale 8.6.0.0
Ibm Websphere Extreme Scale 7.1.1
Ibm Websphere Extreme Scale 8.5.0.2
1 EDB exploit
3.7
CVSSv3
CVE-2016-2861
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3, 7.1.1 prior to 7.1.1.1, 8.5 prior to 8.5.0.3, and 8.6 prior to 8.6.0.8 does not properly encrypt data, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 8.6.0.1
Ibm Websphere Extreme Scale 8.6.0.4
Ibm Websphere Extreme Scale 8.6.0.6
Ibm Websphere Extreme Scale 8.6.0.5
Ibm Websphere Extreme Scale 8.5.0.1
Ibm Websphere Extreme Scale 8.5.0
Ibm Websphere Extreme Scale 8.6.0.3
Ibm Websphere Extreme Scale 8.6.0.7
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 8.6.0.2
Ibm Websphere Extreme Scale 8.6.0.0
Ibm Websphere Extreme Scale 7.1.1
Ibm Websphere Extreme Scale 8.5.0.2
Ibm Websphere Extreme Scale 8.6.0
NA
CVE-2015-2025
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 does not set the secure flag for the session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission within an http session.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2026
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2027
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 improperly performs logout actions, which allows remote malicious users to bypass intended access restrictions by leveraging an unattended workstation.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2028
CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2029
Session fixation vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 allows remote malicious users to hijack web sessions via a session identifier.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2030
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 has an improper account-lockout setting, which makes it easier for remote malicious users to obtain access via a brute-force attack.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2031
Cross-site scripting (XSS) vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »