Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm i 7.3 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-34358
IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 23...
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
7.8
CVSSv3
CVE-2023-40685
Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege escalation vulnerability. A malicious actor with command line access to the operating system can exploit this vulnerability to elevate privileges to gain root access to the operating s...
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
7.8
CVSSv3
CVE-2023-40686
Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege escalation vulnerability. A malicious actor with command line access to the operating system can exploit this vulnerability to elevate privileges to gain component access to the operat...
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
8.2
CVSSv3
CVE-2021-20501
IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network malicious user to send emails to non-existent local-domain recipients to the SMTP server, caused by using a non-default configuration. An attacker could exploit this vulnerability to consume unnecessary network bandwidth and disk...
Ibm I 7.2
Ibm I 7.1
Ibm I 7.3
Ibm I 7.4
7.8
CVSSv3
CVE-2023-43064
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause arbitrary code to run with the privilege of the user invoking the facsimile support. IBM X-Force ID: 267689.
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
6.5
CVSSv3
CVE-2021-39056
The IBM i 7.1, 7.2, 7.3, and 7.4 Extended Dynamic Remote SQL server (EDRSQL) could allow a remote authenticated user to send a specially crafted request and cause a denial of service. IBM X-Force ID: 214537.
Ibm I 7.1
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
5.5
CVSSv3
CVE-2019-4381
IBM i 7.27.3 Clustering could allow a local malicious user to obtain sensitive information, caused by the use of advanced node failure detection using the REST API to interface with the HMC. An attacker could exploit this vulnerability to obtain HMC credentials. IBM X-Force ID: 1...
Ibm I 7.2
Ibm I 7.3
6.1
CVSSv3
CVE-2019-4040
IBM I 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 156164.
Ibm I 7.2
Ibm I 7.3
5.3
CVSSv3
CVE-2023-47741
IBM i 7.3, 7.4, 7.5, IBM i Db2 Mirror for i 7.4 and 7.5 web browser clients may leave clear-text passwords in browser memory that can be viewed using common browser tools before the memory is garbage collected. A malicious actor with access to the victim's PC could exploit ...
Ibm Db2 Mirror For I 7.5
Ibm Db2 Mirror For I 7.4
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
NA
CVE-2024-25050
IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2, 7.3, 7.4, 7.5 networking and compiler infrastructure could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with adm...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3