Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security directory server vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-4542
IBM Security Directory Server 6.4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
Ibm Security Directory Server 6.4.0
5.3
CVSSv3
CVE-2019-4563
IBM Security Directory Server 6.4.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the...
Ibm Security Directory Server 6.4.0.0
7.8
CVSSv3
CVE-2015-1975
The web administration tool in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, and 6.3 before iFix 37 and IBM Security Directory Server 6.3.1 before iFix 11 and 6.4 before iFix 2 allows local users to gain privileges via vectors re...
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.4.0
Ibm Tivoli Directory Server 6.3.1.0
NA
CVE-2015-1972
IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote malicious users to obtain sensitive error-log information via a crafted POST request.
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.1.0
Ibm Tivoli Directory Server 6.4.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.3.0.0
NA
CVE-2015-1974
The web administration tool in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote authenticated users to bypass intended command restrictions via unspecifie...
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.1.0
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.4.0
NA
CVE-2015-1978
Cross-site scripting (XSS) vulnerability in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote malicious users to inject arbitrary web script or HTML via un...
Ibm Tivoli Directory Server 6.3.1.0
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.4.0
NA
CVE-2015-2019
IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not prevent caching of documents retrieved in SSL sessions, which allows physically proximate malicious users to o...
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.4.0
Ibm Tivoli Directory Server 6.3.1.0
NA
CVE-2015-1959
IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not properly restrict encrypted files, which allows local users to obtain sensitive information or possibly have u...
Ibm Tivoli Directory Server 6.0
Ibm Tivoli Directory Server 6.1.0
Ibm Tivoli Directory Server 6.2.0.0
Ibm Tivoli Directory Server 6.3.0.0
Ibm Tivoli Directory Server 6.3.1.0
Ibm Tivoli Directory Server 6.4.0
5.3
CVSSv3
CVE-2022-32751
IBM Security Verify Directory 10.0.0 could disclose sensitive server information that could be used in further attacks against the system. IBM X-Force ID: 228437.
Ibm Security Verify Directory 10.0.0
7.5
CVSSv3
CVE-2022-33165
IBM Security Directory Server 6.4.0 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 228582.
Ibm Security Directory Integrator 7.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »