Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm datapower gateway vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-40228
IBM DataPower Gateway 10.0.3.0 up to and including 10.0.4.0, 10.0.1.0 up to and including 10.0.1.9, 2018.4.1.0 up to and including 2018.4.1.22, and 10.5.0.0 up to and including 10.5.0.2 does not invalidate session after a password change which could allow an authenticated user t...
Ibm Datapower Gateway
NA
CVE-2015-7412
The GatewayScript modules on IBM DataPower Gateways with software 7.2.0.x prior to 7.2.0.1, when the GatewayScript decryption API or a JWE decrypt action is enabled, do not require signed ciphertext data, which makes it easier for remote malicious users to obtain plaintext data v...
Ibm Datapower Gateway
5.4
CVSSv3
CVE-2018-1667
IBM DataPower Gateway 7.6.0.0 up to and including 7.6.0.10, 7.5.2.0 up to and including 7.5.2.17, 7.5.1.0 up to and including 7.5.1.17, 7.5.0.0 up to and including 7.5.0.18, and 7.7.0.0 up to and including 7.7.1.3 is vulnerable to cross-site scripting. This vulnerability allows u...
Ibm Datapower Gateway
5.5
CVSSv3
CVE-2018-1677
IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are vulnerable to a denial of service, caused by the improper handling of full file system. A local attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 145171...
Ibm Datapower Gateway
9.8
CVSSv3
CVE-2019-4621
IBM DataPower Gateway 7.6.0.0-7 throug 6.0.14 and 2018.4.1.0 up to and including 2018.4.1.5 have a default administrator account that is enabled if the IPMI LAN channel is enabled. A remote attacker could use this account to gain unauthorised access to the BMC. IBM X-Force ID: 16...
Ibm Datapower Gateway
5.5
CVSSv3
CVE-2018-1652
IBM DataPower Gateway 7.1.0.0 up to and including 7.1.0.19, 7.2.0.0 up to and including 7.2.0.16, 7.5.0.0 up to and including 7.5.0.10, 7.5.1.0 up to and including 7.5.1.9, 7.5.2.0 up to and including 7.5.2.9, and 7.6.0.0 up to and including 7.6.0.2 and IBM MQ Appliance 8.0.0.0 u...
Ibm Datapower Gateway
Ibm Mq Appliance
7.8
CVSSv3
CVE-2019-4294
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.6, 7.6.0.0 up to and including 7.6.0.15 and IBM MQ Appliance 8.0.0.0 up to and including 8.0.0.12, 9.1.0.0 up to and including 9.1.0.2, and 9.1.1 up to and including 9.1.2 could allow a local malicious user to execute ...
Ibm Mq Appliance
Ibm Datapower Gateway
3.3
CVSSv3
CVE-2022-22326
IBM Datapower Gateway 10.0.2.0 up to and including 10.0.4.0, 10.0.1.0 up to and including 10.0.1.5, and 2018.4.1.0 up to and including 2018.4.1.18 could allow unauthorized viewing of logs and files due to insufficient authorization checks. IBM X-Force ID: 218856.
Ibm Datapower Gateway
Ibm Mq Appliance M2002 Firmware
Ibm Mq Appliance M2001 Firmware
NA
CVE-2009-0120
The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote malicious users to cause a denial of service (device reboot) by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data.
Ibm Websphere Datapower Xml Security Gateway Xs40 3.6.1.5
1 EDB exploit
NA
CVE-2013-0499
Cross-site scripting (XSS) vulnerability in the echo functionality on IBM WebSphere DataPower SOA appliances with firmware 3.8.2, 4.0, 4.0.1, 4.0.2, and 5.0.0 allows remote malicious users to inject arbitrary web script or HTML via a SOAP message, as demonstrated by the XML Firew...
Ibm Websphere Datapower Xc10 Appliance Firmware 3.8.2
Ibm Websphere Datapower Xc10 Appliance Firmware 4.0
Ibm Websphere Datapower Xc10 Appliance Firmware 4.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 4.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 5.0.0
Ibm Websphere Datapower Xc10 Appliance -
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 5.0.0
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0.1
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0.2
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 3.8.2
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0
Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition -
Ibm Websphere Datapower Service Gateway Xg45 Firmware 5.0.0
Ibm Websphere Datapower Service Gateway Xg45 Firmware 3.8.2
Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0.1
Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0.2
Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0
Ibm Websphere Datapower Service Gateway Xg45 -
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 5.0.0
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 3.8.2
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 4.0.1
Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 4.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »