Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere datapower xc10 appliance firmware 2.1.0.0 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2015-1893
The IBM WebSphere DataPower XC10 appliance 2.1 prior to 2.1.0.3 allows remote malicious users to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
534
VMScore
CVE-2014-3058
Cross-site request forgery (CSRF) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
356
VMScore
CVE-2014-6138
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to bypass intended grid-data access restrictions via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
312
VMScore
CVE-2014-6163
Cross-site scripting (XSS) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
187
VMScore
CVE-2015-1970
The IBM WebSphere DataPower XC10 appliance 2.1 up to and including 2.1.0.3 and 2.5 up to and including 2.5.0.4 retains data on SSD cards, which might allow physically proximate malicious users to obtain sensitive information by extracting a card and attaching it elsewhere.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.4
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.2
187
VMScore
CVE-2014-6143
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain sensitive information by reading a response.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started