Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm datapower gateway vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-4580
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.12 could allow a remote malicious user to cause a denial of service by sending a specially crafted a JSON request with invalid characters. IBM X-Force ID: 184439.
Ibm Datapower Gateway
5
CVSSv2
CVE-2020-4831
IBM DataPower Gateway 10.0.0.0 up to and including 10.0.1.0 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 189965.
Ibm Datapower Gateway
4.6
CVSSv2
CVE-2020-5014
IBM DataPower Gateway V10 and V2018 could allow a local attacker with administrative privileges to execute arbitrary code on the system using a server-side requesr forgery attack. IBM X-Force ID: 193247.
Ibm Datapower Gateway
1 Github repository
4.3
CVSSv2
CVE-2017-1773
IBM DataPower Gateways 7.1, 7,2, 7.5, and 7.6 could allow an attacker using man-in-the-middle techniques to spoof DNS responses to perform DNS cache poisoning and redirect Internet traffic. IBM X-Force ID: 136817.
Ibm Datapower Gateway
4.3
CVSSv2
CVE-2021-38944
IBM DataPower Gateway 10.0.2.0 up to and including 1.0.3.0, 10.0.1.0 up to and including 10.0.1.5, and 2018.4.1.0 up to and including 2018.4.1.18 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user...
Ibm Datapower Gateway
2.1
CVSSv2
CVE-2018-1652
IBM DataPower Gateway 7.1.0.0 up to and including 7.1.0.19, 7.2.0.0 up to and including 7.2.0.16, 7.5.0.0 up to and including 7.5.0.10, 7.5.1.0 up to and including 7.5.1.9, 7.5.2.0 up to and including 7.5.2.9, and 7.6.0.0 up to and including 7.6.0.2 and IBM MQ Appliance 8.0.0.0 u...
Ibm Datapower Gateway
Ibm Mq Appliance
7.2
CVSSv2
CVE-2019-4294
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.6, 7.6.0.0 up to and including 7.6.0.15 and IBM MQ Appliance 8.0.0.0 up to and including 8.0.0.12, 9.1.0.0 up to and including 9.1.0.2, and 9.1.1 up to and including 9.1.2 could allow a local malicious user to execute ...
Ibm Mq Appliance
Ibm Datapower Gateway
NA
CVE-2022-22326
IBM Datapower Gateway 10.0.2.0 up to and including 10.0.4.0, 10.0.1.0 up to and including 10.0.1.5, and 2018.4.1.0 up to and including 2018.4.1.18 could allow unauthorized viewing of logs and files due to insufficient authorization checks. IBM X-Force ID: 218856.
Ibm Datapower Gateway
Ibm Mq Appliance M2002 Firmware
Ibm Mq Appliance M2001 Firmware
7.8
CVSSv2
CVE-2009-0120
The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote malicious users to cause a denial of service (device reboot) by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data.
Ibm Websphere Datapower Xml Security Gateway Xs40 3.6.1.5
1 EDB exploit
4.3
CVSSv2
CVE-2013-0499
Cross-site scripting (XSS) vulnerability in the echo functionality on IBM WebSphere DataPower SOA appliances with firmware 3.8.2, 4.0, 4.0.1, 4.0.2, and 5.0.0 allows remote malicious users to inject arbitrary web script or HTML via a SOAP message, as demonstrated by the XML Firew...
Ibm Websphere Datapower Xc10 Appliance Firmware 3.8.2
Ibm Websphere Datapower Xc10 Appliance Firmware 4.0
Ibm Websphere Datapower Xc10 Appliance Firmware 4.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 4.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 5.0.0
Ibm Websphere Datapower Xc10 Appliance -
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 5.0.0
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0.1
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0.2
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 3.8.2
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition -
Ibm Websphere Datapower Service Gateway Xg45 Firmware 5.0.0
Ibm Websphere Datapower Service Gateway Xg45 Firmware 3.8.2
Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0.1
Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0.2
Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0
Ibm Websphere Datapower Service Gateway Xg45 -
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 5.0.0
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 3.8.2
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 4.0.1
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 4.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »