Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm java vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-3086
Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote malicious users to gain privileges by leveraging the ability to execute code in the context of a security manager.
Ibm Lotus Notes 8.5.3.0
Ibm Lotus Notes 9.0.1.0
Ibm Lotus Domino 9.0.1.0
Ibm Lotus Domino 8.5.3.0
Ibm Websphere Real Time 3.0
7.5
CVSSv2
CVE-2009-1521
Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 up to and including 5.2.5.3, 5.3.0.0 up to and including 5.3.6.5, 5.4.0.0 up to and including 5.4.2.6, and 5.5.0.0 up to and including 5.5.1.17, and the TSM Express client 5.3.3.0 up ...
Ibm Tivoli Storage Manager Client 5.2.4
Ibm Tivoli Storage Manager Client 5.2.5
Ibm Tivoli Storage Manager Client 5.4.0
Ibm Tivoli Storage Manager Client 5.4.1
Ibm Tivoli Storage Manager Client 5.2.2
Ibm Tivoli Storage Manager Client 5.2.3
Ibm Tivoli Storage Manager Client 5.3.5
Ibm Tivoli Storage Manager Client 5.3.6
Ibm Tivoli Storage Manager Client 5.3.0
Ibm Tivoli Storage Manager Client 5.3.2
Ibm Tivoli Storage Manager Client 5.4.2
Ibm Tivoli Storage Manager Client 5.5.0
Ibm Tivoli Storage Manager Client 5.2.0
Ibm Tivoli Storage Manager Client 5.3.3
Ibm Tivoli Storage Manager Client 5.3.4
Ibm Tivoli Storage Manager Client 5.5.1
Ibm Tivoli Storage Manager Express 5.3
6.8
CVSSv2
CVE-2008-4679
The Web Services Security component in IBM WebSphere Application Server (WAS) 6.0.2 prior to 6.0.2.31 and 6.1 prior to 6.1.0.19, when Certificate Store Collections is configured to use Certificate Revocation Lists (CRL), does not call the setRevocationEnabled method on the PKIXBu...
Ibm Websphere Application Server 6.0.2
Ibm Websphere Application Server 6.0.2.2
Ibm Websphere Application Server 6.0.2.23
Ibm Websphere Application Server 6.0.2.9
Ibm Websphere Application Server 6.0.2.17
Ibm Websphere Application Server 6.0.2.19
Ibm Websphere Application Server 6.0.2.25
Ibm Websphere Application Server 6.0.2.27
Ibm Websphere Application Server 6.0.1.11
Ibm Websphere Application Server 6.0.1.13
Ibm Websphere Application Server 6.0.2.1
Ibm Websphere Application Server 6.0.2.11
Ibm Websphere Application Server 6.0.2.6
Ibm Websphere Application Server 6.0.2.5
Ibm Websphere Application Server 6.0.1.3
Ibm Websphere Application Server 6.0.1.5
Ibm Websphere Application Server 6.0.1.1
Ibm Websphere Application Server 6.0.1.2
Ibm Websphere Application Server 6.0.1.15
Ibm Websphere Application Server 6.0.1.17
Ibm Websphere Application Server 6.0.2.13
Ibm Websphere Application Server 6.0.2.15
4.6
CVSSv2
CVE-2018-12539
In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by...
Eclipse Openj9 0.8
Oracle Enterprise Manager Base Platform 13.2.0.0.0
Oracle Enterprise Manager Base Platform 13.3.0.0.0
1.9
CVSSv2
CVE-2014-6195
The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage Manager (TSM) Backup-Archive client 5.4 and 5.5 prior to 5.5.4.4 on AIX, Linux, and Solaris; 5.4.x and 5.5.x on Windows and z/OS; 6.1 prior to 6.1.5.7 on z/OS; 6.1 and 6.2 prior to 6.2.5.2 on Windows, prior to ...
Ibm Tivoli Storage Manager 7.1
Ibm Tivoli Storage Manager 5.5
Ibm Tivoli Storage Manager 6.4
Ibm Tivoli Storage Manager 6.1
Ibm Tivoli Storage Manager 5.4
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.2
7.5
CVSSv2
CVE-2016-0360
IBM Websphere MQ JMS 7.0.1, 7.1, 7.5, 8.0, and 9.0 client provides classes that deserialize objects from untrusted sources which could allow a malicious user to execute arbitrary Java code by adding vulnerable classes to the classpath. IBM Reference #: 1983457.
Ibm Websphere Mq Jms 7.1
Ibm Websphere Mq Jms 7.5
Ibm Websphere Mq Jms 8.0
Ibm Websphere Mq Jms 9.0
Ibm Websphere Mq Jms 7.0.1
4
CVSSv2
CVE-2008-1966
Multiple buffer overflows in the JAR file administration routines in the BSU JAVA subcomponent in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 allow remote authenticated users to cause a denial of service (instance crash) via a call to the (1) RECOVERJAR or (2) REMO...
Ibm Db2 8.0
Ibm Db2 9.5
Ibm Db2 9.1
9.3
CVSSv2
CVE-2012-4858
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly validate Java serialized input, which allows remote malicious users to execute arbitrary commands via unspecified vectors.
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
6.9
CVSSv2
CVE-2019-4732
IBM SDK, Java Technology Edition Version 7.0.0.0 up to and including 7.0.10.55, 7.1.0.0 up to and including 7.1.4.55, and 8.0.0.0 up to and including 8.0.6.0 could allow a local authenticated malicious user to execute arbitrary code on the system, caused by DLL search order hijac...
Ibm Sdk
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
7.5
CVSSv2
CVE-2018-12547
In Eclipse OpenJ9, prior to the 0.12.0 release, the jio_snprintf() and jio_vsnprintf() native methods ignored the length parameter. This affects existing APIs that called the functions to exceed the allocated buffer. This functions were not directly callable by non-native user co...
Eclipse Openj9
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 6.0
Redhat Satellite 5.8
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »