Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2020-4561
IBM Cognos Analytics 11.0 and 11.1 DQM API allows submitting of all control requests in unauthenticated sessions. This allows a remote attacker who can access a valid CA endpoint to read and write files to the Cognos Analytics system. IBM X-Force ID: 183903.
Ibm Cognos Analytics 11.0.0
Ibm Cognos Analytics 11.1.0
Netapp Oncommand Insight -
10
CVSSv3
CVE-2020-26829
SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster and even outside the network segment dedicated for the internal clus...
Sap Netweaver Application Server Java 7.11
Sap Netweaver Application Server Java 7.20
Sap Netweaver Application Server Java 7.30
Sap Netweaver Application Server Java 7.31
Sap Netweaver Application Server Java 7.40
Sap Netweaver Application Server Java 7.50
1 Article
10
CVSSv3
CVE-2020-1350
A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka 'Windows DNS Server Remote Code Execution Vulnerability'.
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2016 1903
Microsoft Windows Server 2016 1909
Microsoft Windows Server 2016 2004
31 Github repositories
2 Articles
10
CVSSv3
CVE-2019-4202
IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal is vulnerable to command injection. An attacker with a specially crafted request can run arbitrary code on the server and gain complete access to the system. IBM X-Force ID: 159123.
Ibm Api Connect
10
CVSSv3
CVE-2018-1722
IBM Security Access Manager Appliance 9.0.4.0 and 9.0.5.0 could allow remote code execution when Advanced Access Control or Federation services are running. IBM X-Force ID: 147370.
Ibm Security Access Manager 9.0.4.0
Ibm Security Access Manager 9.0.5.0
10
CVSSv3
CVE-2016-8938
IBM UrbanCode Deploy could allow a user to execute code using a specially crafted file upload that would replace code on the server. This code could be executed on the UCD agent machines that host customer's production applications.
Ibm Urbancode Deploy 6.0.1.11
Ibm Urbancode Deploy 6.0.1.12
Ibm Urbancode Deploy 6.0.1.13
Ibm Urbancode Deploy 6.0.1.14
Ibm Urbancode Deploy 6.1.1
Ibm Urbancode Deploy 6.1.1.1
Ibm Urbancode Deploy 6.1.1.2
Ibm Urbancode Deploy 6.1.1.3
Ibm Urbancode Deploy 6.2.1
Ibm Urbancode Deploy 6.2.1.1
Ibm Urbancode Deploy 6.2.2
Ibm Urbancode Deploy 6.2.2.1
Ibm Urbancode Deploy 6.0.1
Ibm Urbancode Deploy 6.0.1.10
Ibm Urbancode Deploy 6.0.1.2
Ibm Urbancode Deploy 6.0.1.4
Ibm Urbancode Deploy 6.0.1.6
Ibm Urbancode Deploy 6.1.0.1
Ibm Urbancode Deploy 6.1.0.3
Ibm Urbancode Deploy 6.1.1.5
Ibm Urbancode Deploy 6.1.1.7
Ibm Urbancode Deploy 6.2.0.0
10
CVSSv3
CVE-2016-6082
IBM BigFix Platform could allow a remote malicious user to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary code on the system.
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
10
CVSSv3
CVE-2015-7425
The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 6.3 prior to 6.3.2.5, 6.4 prior to 6.4.3.1, and 7.1 prior to 7.1.4 and Tivoli Storage FlashCo...
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 6.4.1
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 6.3.2
Ibm Tivoli Storage Flashcopy Manager For Vmware 6.4.3
Ibm Tivoli Storage Flashcopy Manager For Vmware 6.4.2
Ibm Tivoli Storage Flashcopy Manager For Vmware 6.3
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 6.3.1
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 4.1.3
Ibm Tivoli Storage Flashcopy Manager For Vmware 3.2
Ibm Tivoli Storage Flashcopy Manager For Vmware 3.1.1
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 4.1.2
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 7.1.1
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 7.1.0
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 4.1.0
Ibm Tivoli Storage Flashcopy Manager For Vmware 6.4
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 7.1.3
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 7.1.2
Ibm Tivoli Storage Flashcopy Manager For Vmware 3.1
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware 4.1.1
10
CVSSv3
CVE-2015-7426
The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 7.1 prior to 7.1.3.0 and Tivoli Storage FlashCopy Manager for VMware (aka Spectrum Protect Snapshot) ...
Ibm Spectrum Protect Snapshot 4.1
Ibm Spectrum Protect For Virtual Environments 7.1
9.9
CVSSv3
CVE-2019-4013
IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID: 155887.
Ibm Bigfix Platform
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »