Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm cloud pak for security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-28953
IBM Cognos Analytics on Cloud Pak for Data 4.0 could allow an malicious user to make system calls that might compromise the security of the containers due to misconfigured security context. IBM X-Force ID: 251465.
Ibm Cognos Analytics Cartridge For Ibm Cloud Pak For Data
NA
CVE-2022-43900
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.2 could provide a weaker than expected security. A local attacker can create an outbound network connection to another system. IBM X-Force ID: 240827.
Ibm Websphere Automation For Ibm Cloud Pak For Watson Aiops
NA
CVE-2023-38735
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 could allow a remote malicious user to bypass security restrictions, caused by a reverse tabnabbing flaw. An attacker could exploit this vulnerability and redirect a victim to a phishing site. IBM X-Force ID: 262482.
Ibm Cognos Dashboards On Cloud Pak For Data 4.7.0
7.5
CVSSv2
CVE-2021-20578
IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 could allow an malicious user to perform unauthorized actions due to improper or missing authentication controls. IBM X-Force ID: 199282.
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.2.0
5
CVSSv2
CVE-2021-29894
IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 207320.
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.2.0
4
CVSSv2
CVE-2021-39013
IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user to obtain sensitive information in HTTP responses that could be used in further attacks against the system. IBM X-Force ID: 213651.
Ibm Cloud Pak For Security 1.7.0.0
Ibm Cloud Pak For Security 1.7.1.0
Ibm Cloud Pak For Security 1.7.2.0
NA
CVE-2021-39089
IBM Cloud Pak for Security (CP4S) 1.10.0.0 up to and including 1.10.6.0 could allow an authenticated user to obtain sensitive information from a specially crafted HTTP request. IBM X-Force ID: 216387.
Ibm Cloud Pak For Security
NA
CVE-2021-39011
IBM Cloud Pak for Security (CP4S) 1.10.0.0 up to and including 1.10.6.0 stores potentially sensitive information in log files that could be read by a privileged user. IBM X-Force ID: 213645.
Ibm Cloud Pak For Security
NA
CVE-2022-38385
IBM Cloud Pak for Security (CP4S) 1.10.0.0 up to and including 1.10.2.0 could allow an authenticated user to obtain highly sensitive information or perform unauthorized actions due to improper input validation. IBM X-Force ID: 233777.
Ibm Cloud Pak For Security
NA
CVE-2022-38387
IBM Cloud Pak for Security (CP4S) 1.10.0.0 up to and including 1.10.2.0 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 233786.
Ibm Cloud Pak For Security
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »