Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm bigfix 9.2 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2016-8967
IBM BigFix Inventory v9 9.2 stores user credentials in plain in clear text which can be read by a local user.
Ibm License Metric Tool 9.2.0
Ibm Bigfix Inventory 9.2
5
CVSSv2
CVE-2016-8977
IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.
Ibm License Metric Tool 9.2.0
Ibm Bigfix Inventory 9.2
4.3
CVSSv2
CVE-2016-8966
IBM BigFix Inventory v9 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques.
Ibm License Metric Tool 9.2.0
Ibm Bigfix Inventory 9.2
2.1
CVSSv2
CVE-2016-8981
IBM BigFix Inventory v9 allows web pages to be stored locally which can be read by another user on the system.
Ibm License Metric Tool 9.2.0
Ibm Bigfix Inventory 9.2
7.5
CVSSv2
CVE-2016-8980
IBM BigFix Inventory v9 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources.
Ibm License Metric Tool 9.2.0
Ibm Bigfix Inventory 9.2
5.5
CVSSv2
CVE-2017-1219
IBM Tivoli Endpoint Manager is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 123859.
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.1.7
Ibm Bigfix Platform 9.2.0
Ibm Bigfix Platform 9.2.2
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.1.3
Ibm Bigfix Platform 9.1.4
Ibm Bigfix Platform 9.1.5
Ibm Bigfix Platform 9.1.6
Ibm Bigfix Platform 9.2.3
Ibm Bigfix Platform 9.2.4
Ibm Bigfix Platform 9.2.5
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.2.1
4.3
CVSSv2
CVE-2017-1203
IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) Platform and Applications is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials di...
Ibm Bigfix Platform 9.5.5
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.2.1
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2.2
Ibm Bigfix Platform 9.2.3
Ibm Bigfix Platform 9.2.4
Ibm Bigfix Platform 9.2.5
Ibm Bigfix Platform 9.1.3
Ibm Bigfix Platform 9.1.4
Ibm Bigfix Platform 9.1.5
Ibm Bigfix Platform 9.1.6
Ibm Bigfix Platform 9.5.6
Ibm Bigfix Platform 9.2.0
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.1.7
3.5
CVSSv2
CVE-2016-0269
Cross-site scripting (XSS) vulnerability in IBM BigFix Platform 9.x prior to 9.1.8 and 9.2.x prior to 9.2.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Bigfix Platform 9.2.0
Ibm Bigfix Platform 9.2.2
Ibm Bigfix Platform 9.2.1
Ibm Bigfix Platform 9.2.4
Ibm Bigfix Platform 9.2.3
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.2.5
Ibm Bigfix Platform 9.0.8
Ibm Bigfix Platform 9.0.7
Ibm Bigfix Platform 9.0.6
Ibm Bigfix Platform 9.0.5
Ibm Bigfix Platform 9.1.6
Ibm Bigfix Platform 9.1.5
Ibm Bigfix Platform 9.1.4
Ibm Bigfix Platform 9.1.3
Ibm Bigfix Platform 9.1.7
4.3
CVSSv2
CVE-2016-0293
Cross-site scripting (XSS) vulnerability in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x prior to 9.1.8 and 9.2.x prior to 9.2.8 allows remote malicious users to inject arbitrary web script or HTML via a modified .beswrpt file.
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.2.1
Ibm Bigfix Platform 9.2.0
Ibm Bigfix Platform 9.2.5
Ibm Bigfix Platform 9.2.4
Ibm Bigfix Platform 9.2.3
Ibm Bigfix Platform 9.2.2
Ibm Bigfix Platform 9.0.8
Ibm Bigfix Platform 9.0.7
Ibm Bigfix Platform 9.0.6
Ibm Bigfix Platform 9.0.5
Ibm Bigfix Platform 9.1.5
Ibm Bigfix Platform 9.1.4
Ibm Bigfix Platform 9.1.7
Ibm Bigfix Platform 9.1.6
Ibm Bigfix Platform 9.1.3
9
CVSSv2
CVE-2016-0291
IBM BigFix Platform 9.0, 9.1 prior to 9.1.8, and 9.2 prior to 9.2.8 allow remote authenticated users to execute arbitrary commands by leveraging report server access. IBM X-Force ID: 111302.
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »