Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm bigfix platform 9.5 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-0297
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) could allow a remote malicious user to obtain sensitive information due to a missing HTTP Strict-Transport-Security Header through man in the middle techniques.
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
4.3
CVSSv2
CVE-2016-0397
WebReports in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x prior to 9.5.2 allows remote malicious users to obtain sensitive information by sniffing the network for HTTP traffic.
Ibm Bigfix Webreports 9.5
Ibm Bigfix Webreports 9.0
Ibm Bigfix Webreports 9.1
Ibm Bigfix Webreports 9.2
4
CVSSv2
CVE-2019-4058
IBM BigFix Platform 9.2 and 9.5 could allow a low-privilege user to manipulate the UI into exposing interface elements and information normally restricted to administrators. IBM X-Force ID: 156570.
Ibm Bigfix Platform
4
CVSSv2
CVE-2018-1485
IBM BigFix Platform 9.2.0 up to and including 9.2.14 and 9.5 up to and including 9.5.9 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. This could force a user to utilize a cookie that may be known t...
Ibm Bigfix Platform
4
CVSSv2
CVE-2017-1226
IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) generates an error message in error logs that includes sensitive information about its environment which could be used in further attacks against the system. IBM X-Force ID: 123905.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.5
3.5
CVSSv2
CVE-2019-4011
IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
Ibm Bigfix Platform
3.3
CVSSv2
CVE-2016-6085
IBM BigFix Platform could allow an attacker on the local network to crash the BES and relay servers.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.1
2.1
CVSSv2
CVE-2018-2005
IBM BigFix Platform 9.2 and 9.5 stores potentially sensitive information in process memory that could be read by a local attacker with elevated permissions. IBM X-Force ID: 155007
Ibm Bigfix Platform
2.1
CVSSv2
CVE-2017-1231
IBM BigFix Platform 9.5 - 9.5.9 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 123910.
Ibm Bigfix Platform
2.1
CVSSv2
CVE-2016-0296
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive information in log files that could be available to a local user.
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »