Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bigfix vulnerabilities and exploits
(subscribe to this query)
905
VMScore
CVE-2019-4013
IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID: 155887.
Ibm Bigfix Platform
1 EDB exploit
890
VMScore
CVE-2016-6082
IBM BigFix Platform could allow a remote malicious user to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary code on the system.
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
801
VMScore
CVE-2016-0291
IBM BigFix Platform 9.0, 9.1 prior to 9.1.8, and 9.2 prior to 9.2.8 allow remote authenticated users to execute arbitrary commands by leveraging report server access. IBM X-Force ID: 111302.
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform
694
VMScore
CVE-2017-1227
IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash the system. IBM X-Force ID: 123906.
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
668
VMScore
CVE-2021-27762
Misconfigured security-related HTTP headers: Several security-related headers were missing or mis-configured on the web responses
Hcltech Bigfix Platform
668
VMScore
CVE-2019-4012
IBM BigFix WebUI Profile Management 6 and Software Distribution 23 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ...
Ibm Bigfix Webui Software Distribution 23
Ibm Bigfix Webui Profile Management 6
668
VMScore
CVE-2016-8980
IBM BigFix Inventory v9 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources.
Ibm License Metric Tool 9.2.0
Ibm Bigfix Inventory 9.2
641
VMScore
CVE-2017-1233
IBM Remote Control v9 could allow a local user to use the component to replace files to which he does not have write access and which he can cause to be executed with Local System or root privileges. IBM X-Force ID: 123912.
Ibm Bigfix Remote Control 9.1.4
605
VMScore
CVE-2018-1479
IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 140761.
Ibm Bigfix Platform
605
VMScore
CVE-2016-0295
Cross-site request forgery (CSRF) vulnerability in the IBM BigFix Platform 9.0, 9.1, 9.2, and 9.5 prior to 9.5.2 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences. IBM X-Force ID: 111363.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »