Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-43058
IBM Robotic Process Automation 23.0.9 is vulnerable to privilege escalation that affects ownership of projects. IBM X-Force ID: 247527.
Ibm Robotic Process Automation 23.0.9
Ibm Robotic Process Automation For Cloud Pak 23.0.9
9.8
CVSSv3
CVE-2023-37404
IBM Observability with Instana 1.0.243 up to and including 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789.
Ibm Observability With Instana
9.8
CVSSv3
CVE-2023-26270
IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote malicious user to execute arbitrary code on the system, caused by an angular template injection flaw. By sending specially crafted request, an attacker could exploit this vu...
Ibm Guardium Cloud Key Manager
9.8
CVSSv3
CVE-2023-38734
IBM Robotic Process Automation 21.0.0 up to and including 21.0.7.1 and 23.0.0 up to and including 23.0.1 is vulnerable to incorrect privilege assignment when importing users from an LDAP directory. IBM X-Force ID: 262481.
Ibm Robotic Process Automation
Ibm Robotic Process Automation 23.0.0
Ibm Robotic Process Automation 23.0.1
9.8
CVSSv3
CVE-2022-40609
IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote malicious user to execute arbitrary code on the system, caused by an unsafe deserialization flaw. By sending specially-crafted data, an attacker could exploit this vulnerability to execute arbitrary code o...
Ibm Sdk
9.8
CVSSv3
CVE-2023-30990
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a remote malicious user to execute CL commands as QUSER, caused by an exploitation of DDM architecture. IBM X-Force ID: 254036.
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
Ibm I 7.2
9.8
CVSSv3
CVE-2023-27866
IBM Informix JDBC Driver 4.10 and 4.50 is susceptible to remote code execution attack via JNDI injection when driver code or the application using the driver do not verify supplied LDAP URL in Connect String. IBM X-Force ID: 249511.
Ibm Informix Jdbc Driver 4.10
Ibm Informix Jdbc Driver
9.8
CVSSv3
CVE-2023-32336
IBM InfoSphere Information Server 11.7 is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. IBM X-Force ID: 255285.
Ibm Infosphere Information Server 11.7
9.8
CVSSv3
CVE-2022-47984
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 243163.
Ibm Infosphere Information Server 11.7
9.8
CVSSv3
CVE-2023-27284
IBM Aspera Cargo 4.2.5 and IBM Aspera Connect 4.2.5 are vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow a buffer and execute arbitrary code on the system. IBM X-Force ID: 248616.
Ibm Aspera Connect
Ibm Aspera Cargo
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »