Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm bigfix platform vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-1478
IBM BigFix Platform 9.2.0 up to and including 9.2.14 and 9.5 up to and including 9.5.9 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hija...
Ibm Bigfix Platform
6.1
CVSSv3
CVE-2018-1473
IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
Ibm Bigfix Platform
6.1
CVSSv3
CVE-2017-1521
IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) Platform and Applications (IBM BigFix Platform 9.2 and 9.5) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pot...
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
6.1
CVSSv3
CVE-2017-1203
IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) Platform and Applications is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials di...
Ibm Bigfix Platform 9.5.5
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.2.1
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2.2
Ibm Bigfix Platform 9.2.3
Ibm Bigfix Platform 9.2.4
Ibm Bigfix Platform 9.2.5
Ibm Bigfix Platform 9.1.3
Ibm Bigfix Platform 9.1.4
Ibm Bigfix Platform 9.1.5
Ibm Bigfix Platform 9.1.6
Ibm Bigfix Platform 9.5.6
Ibm Bigfix Platform 9.2.0
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.1.7
6.1
CVSSv3
CVE-2017-1223
IBM Tivoli Endpoint Manager could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a us...
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.5.5
Ibm Bigfix Platform 9.5.6
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.5
6.1
CVSSv3
CVE-2016-0293
Cross-site scripting (XSS) vulnerability in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x prior to 9.1.8 and 9.2.x prior to 9.2.8 allows remote malicious users to inject arbitrary web script or HTML via a modified .beswrpt file.
Ibm Bigfix Platform 9.2.7
Ibm Bigfix Platform 9.2.6
Ibm Bigfix Platform 9.2.1
Ibm Bigfix Platform 9.2.0
Ibm Bigfix Platform 9.2.5
Ibm Bigfix Platform 9.2.4
Ibm Bigfix Platform 9.2.3
Ibm Bigfix Platform 9.2.2
Ibm Bigfix Platform 9.0.8
Ibm Bigfix Platform 9.0.7
Ibm Bigfix Platform 9.0.6
Ibm Bigfix Platform 9.0.5
Ibm Bigfix Platform 9.1.5
Ibm Bigfix Platform 9.1.4
Ibm Bigfix Platform 9.1.7
Ibm Bigfix Platform 9.1.6
Ibm Bigfix Platform 9.1.3
5.9
CVSSv3
CVE-2017-1229
IBM Tivoli Endpoint Manager (IBM BigFix 9.2 and 9.5) could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using ma...
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.5
5.9
CVSSv3
CVE-2017-1232
IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. IBM X-Force ID: 123911.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.5
5.9
CVSSv3
CVE-2016-0397
WebReports in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x prior to 9.5.2 allows remote malicious users to obtain sensitive information by sniffing the network for HTTP traffic.
Ibm Bigfix Webreports 9.5
Ibm Bigfix Webreports 9.0
Ibm Bigfix Webreports 9.1
Ibm Bigfix Webreports 9.2
5.5
CVSSv3
CVE-2016-0292
WebReports in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x prior to 9.5.2 allows local users to discover the cleartext system password by reading a report.
Ibm Bigfix 9.0
Ibm Bigfix 9.2
Ibm Bigfix 9.5
Ibm Bigfix 9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »