Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
datapower gateway vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2020-4581
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.12 could allow a remote malicious user to cause a denial of service by sending a chunked transfer-encoding HTTP/2 request. IBM X-Force ID: 184441.
Ibm Datapower Gateway
NA
CVE-2022-31773
IBM DataPower Gateway V10CD, 10.0.1, and 2018.4.1 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 228357.
Ibm Datapower Gateway
NA
CVE-2022-40228
IBM DataPower Gateway 10.0.3.0 up to and including 10.0.4.0, 10.0.1.0 up to and including 10.0.1.9, 2018.4.1.0 up to and including 2018.4.1.22, and 10.5.0.0 up to and including 10.5.0.2 does not invalidate session after a password change which could allow an authenticated user t...
Ibm Datapower Gateway
187
VMScore
CVE-2018-1664
IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 echoing of AMP management interface authorization headers exposes login credential...
Ibm Datapower Gateway
445
VMScore
CVE-2018-1668
IBM DataPower Gateway 7.5.0.0 up to and including 7.5.0.19, 7.5.1.0 up to and including 7.5.1.18, 7.5.2.0 up to and including 7.5.2.18, and 7.6.0.0 up to and including 7.6.0.11 appliances allows "null" logins which could give read access to IPMI data to obtain sensitive...
Ibm Datapower Gateway
383
VMScore
CVE-2020-4992
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.16 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 192737.
Ibm Datapower Gateway
445
VMScore
CVE-2020-4994
IBM DataPower Gateway 10.0.1.0 up to and including 10.0.1.4 and 2018.4.1.0 up to and including 2018.4.1.17 could allow a remote user to cause a temporary denial of service by sending invalid HTTP requests. IBM X-Force ID: 192906.
Ibm Datapower Gateway
356
VMScore
CVE-2020-4203
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.8 could potentially disclose highly sensitive information to a privileged user due to improper access controls. IBM X-Force ID: 174956.
Ibm Datapower Gateway
578
VMScore
CVE-2020-4205
IBM DataPower Gateway 2018.4.1.0 up to and including 2018.4.1.8 could allow an authenticated user to bypass security restrictions, and continue to access the server even after authentication certificates have been revolked. IBM X-Force ID: 174961.
Ibm Datapower Gateway
383
VMScore
CVE-2017-1773
IBM DataPower Gateways 7.1, 7,2, 7.5, and 7.6 could allow an attacker using man-in-the-middle techniques to spoof DNS responses to perform DNS cache poisoning and redirect Internet traffic. IBM X-Force ID: 136817.
Ibm Datapower Gateway
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »