Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2021-20453
IBM WebSphere Application Server 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 196648.
Ibm Websphere Application Server
8.2
CVSSv3
CVE-2021-20353
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 194882.
Ibm Websphere Application Server
8.2
CVSSv3
CVE-2020-4949
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 192025.
Ibm Websphere Application Server
8.1
CVSSv3
CVE-2018-1840
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote malicious user to gain elevated privileges on the system, caused when a security domain is configured to use a federated repository other than global federated repository and then migrated to a newer release of Web...
Ibm Websphere Application Server
8.1
CVSSv3
CVE-2017-1337
IBM WebSphere MQ 9.0.1 and 9.0.2 Java/JMS application can incorrectly transmit user credentials in plain text. IBM X-Force ID: 126245.
Ibm Websphere Mq 9.0.1
Ibm Websphere Mq 9.0.2
8.1
CVSSv3
CVE-2017-1137
IBM WebSphere Application Server 8.0 and 8.5.5 could provide weaker than expected security. A remote attacker could exploit this weakness to obtain sensitive information and gain unauthorized access to the admin console. IBM X-Force ID: 121549.
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5.5
Ibm Websphere Application Server 8.5
8.1
CVSSv3
CVE-2017-1151
IBM WebSphere Application Server 8.0, 8.5, 8.5.5, and 9.0 using OpenID Connect (OIDC) configured with a Trust Association Interceptor (TAI) could allow a user to gain elevated privileges on the system. IBM Reference #: 1999293.
Ibm Websphere Application Server 9.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5.5
Ibm Websphere Application Server 8.5
8
CVSSv3
CVE-2016-2863
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Commerce 7.0 Feature Pack 8, 8.0.0.x prior to 8.0.0.10, and 8.0.1.x prior to 8.0.1.2 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Commerce 8.0.0.2
Ibm Websphere Commerce 8.0.0.5
Ibm Websphere Commerce 8.0.0.6
Ibm Websphere Commerce 8.0.0.9
Ibm Websphere Commerce 7.0
Ibm Websphere Commerce 8.0.0.8
Ibm Websphere Commerce 8.0.0.1
Ibm Websphere Commerce 8.0.0.3
Ibm Websphere Commerce 8.0.0.7
Ibm Websphere Commerce 8.0.0.0
7.8
CVSSv3
CVE-2023-3440
Incorrect Default Permissions vulnerability in Hitachi JP1/Performance Management on Windows allows File Manipulation.This issue affects JP1/Performance Management - Manager: from 09-00 prior to 12-50-07; JP1/Performance Management - Base: from 09-00 through 10-50-*; JP1/Performa...
Hitachi Jp1/performance Management -
7.8
CVSSv3
CVE-2019-3800
CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated malicious user with access to the CF CLI config file can act as that client, who is t...
Pivotal Cloud Foundry Notifications
Pivotal Cloud Foundry Log Cache Release
Pivotal Cloud Foundry Deployment Concourse Tasks
Pivotal Cloud Foundry Deployment
Pivotal Cloud Foundry Smoke Test
Pivotal Cloud Foundry Routing Release
Pivotal Cloud Foundry Networking Release
Pivotal Cloud Foundry Command Line Interface Release
Pivotal Cloud Foundry Command Line Interface
Pivotal Pivotal Cloud Foundry Service Broker
Pivotal On Demand Service Broker
Pivotal Metric Registrar Release
Pivotal Credhub Service Broker For Pcf
Pivotal Cloud Foundry Autoscaling Release
Pivotal Cloud Foundry Event Alerts
Pivotal Application Service
Pivotal Cloud Foundry Healthwatch
Pivotal Single Sign-on
Apigee Edge Service Broker
Newrelic Dotnet Extension Buildpack
Microsoft Azure Service Broker
Appdynamics Application Analytics
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »