Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-1567
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow remote malicious users to execute arbitrary Java code through the SOAP connector with a serialized object from untrusted sources. IBM X-Force ID: 143024.
Ibm Websphere Application Server
1 Article
9.8
CVSSv3
CVE-2011-4889
The javax.naming.directory.AttributeInUseException class in the Virtual Member Manager in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.43, 7.0 prior to 7.0.0.21, and 8.0 prior to 8.0.0.2 does not properly update passwords on a configuration using Tivoli Directory Ser...
Ibm Websphere Application Server
9.8
CVSSv3
CVE-2016-0360
IBM Websphere MQ JMS 7.0.1, 7.1, 7.5, 8.0, and 9.0 client provides classes that deserialize objects from untrusted sources which could allow a malicious user to execute arbitrary Java code by adding vulnerable classes to the classpath. IBM Reference #: 1983457.
Ibm Websphere Mq Jms 7.0.1
Ibm Websphere Mq Jms 7.5
Ibm Websphere Mq Jms 9.0
Ibm Websphere Mq Jms 7.1
Ibm Websphere Mq Jms 8.0
9.8
CVSSv3
CVE-2016-6090
IBM WebSphere Commerce contains an unspecified vulnerability that could allow disclosure of user personal data, performing of unauthorized administrative operations, and potentially causing a denial of service.
Ibm Websphere Commerce 8.0.3.0
Ibm Websphere Commerce
9.8
CVSSv3
CVE-2015-7450
Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the ...
Ibm Tivoli Common Reporting 3.1.0.2
Ibm Tivoli Common Reporting 3.1
Ibm Tivoli Common Reporting 3.1.2
Ibm Tivoli Common Reporting 3.1.2.1
Ibm Tivoli Common Reporting 2.1
Ibm Tivoli Common Reporting 2.1.1.2
Ibm Tivoli Common Reporting 3.1.0.1
Ibm Tivoli Common Reporting 2.1.1
1 EDB exploit
9.1
CVSSv3
CVE-2023-27554
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 249185.
Ibm Websphere Application Server
9.1
CVSSv3
CVE-2016-9706
IBM Integration Bus 9.0 and 10.0 and WebSphere Message Broker SOAP FLOWS is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive informatio...
Ibm Websphere Message Broker 8.0
Ibm Integration Bus 10.0
Ibm Integration Bus 9.0
8.8
CVSSv3
CVE-2022-22493
IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449.
Ibm Websphere Automation For Ibm Cloud Pak For Watson Aiops
8.8
CVSSv3
CVE-2022-22476
IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request. IBM X-Force ID: 225604.
Ibm Websphere Application Server
Ibm Open Liberty
8.8
CVSSv3
CVE-2021-39031
IBM WebSphere Application Server - Liberty 17.0.0.3 up to and including 22.0.0.1 could allow a remote authenticated malicious user to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability and could result in in granting perm...
Ibm Websphere Application Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »