Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm cloud pak for security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-43900
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.2 could provide a weaker than expected security. A local attacker can create an outbound network connection to another system. IBM X-Force ID: 240827.
Ibm Websphere Automation For Ibm Cloud Pak For Watson Aiops
NA
CVE-2022-38385
IBM Cloud Pak for Security (CP4S) 1.10.0.0 up to and including 1.10.2.0 could allow an authenticated user to obtain highly sensitive information or perform unauthorized actions due to improper input validation. IBM X-Force ID: 233777.
Ibm Cloud Pak For Security
NA
CVE-2022-36776
IBM Cloud Pak for Security (CP4S) 1.10.0.0 79and 1.10.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a truste...
Ibm Cloud Pak For Security
NA
CVE-2022-38387
IBM Cloud Pak for Security (CP4S) 1.10.0.0 up to and including 1.10.2.0 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 233786.
Ibm Cloud Pak For Security
4
CVSSv2
CVE-2021-39013
IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user to obtain sensitive information in HTTP responses that could be used in further attacks against the system. IBM X-Force ID: 213651.
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.2.0
7.5
CVSSv2
CVE-2021-20578
IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 could allow an malicious user to perform unauthorized actions due to improper or missing authentication controls. IBM X-Force ID: 199282.
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.2.0
5
CVSSv2
CVE-2021-29894
IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 207320.
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.2.0
5
CVSSv2
CVE-2021-20539
IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could disclose sensitive information to an unauthorized user through HTTP GET requests. This information could be used in further attacks against the system. IBM X-Force ID: 198920.
Ibm Cloud Pak For Security 1.5.0.0
Ibm Cloud Pak For Security 1.6.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.6.1.0
Ibm Cloud Pak For Security 1.5.1.0
5
CVSSv2
CVE-2021-20540
IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could disclose sensitive information to an unauthorized user through HTTP GET requests. This information could be used in further attacks against the system. IBM X-Force ID: 198923.
Ibm Cloud Pak For Security 1.5.0.0
Ibm Cloud Pak For Security 1.6.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.6.1.0
Ibm Cloud Pak For Security 1.5.1.0
9
CVSSv2
CVE-2021-29696
IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request.
Ibm Cloud Pak For Security 1.5.0.0
Ibm Cloud Pak For Security 1.5.0.1
Ibm Cloud Pak For Security 1.6.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.6.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »