Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2
CVE-2014-4752
IBM System Networking G8052, G8124, G8124-E, G8124-ER, G8264, G8316, and G8264-T switches prior to 7.9.10.0; EN4093, EN4093R, CN4093, SI4093, EN2092, and G8264CS switches prior to 7.8.6.0; Flex System Interconnect Fabric prior to 7.8.6.0; 1G L2-7 SLB switch for Bladecenter prior ...
Ibm System Networking Rackswitch G8332 FirmwareIbm System Networking Rackswitch G8332 -Ibm Bladecenter 1g FirmwareIbm Bladecenter 1g -Ibm System Networking Rackswitch G8052 FirmwareIbm System Networking Rackswitch G8124 FirmwareIbm System Networking Rackswitch G8124e FirmwareIbm System Networking Rackswitch G8264 FirmwareIbm System Networking Rackswitch G8264t FirmwareIbm System Networking Rackswitch G8124er FirmwareIbm System Networking Rackswitch G8316 FirmwareIbm System Networking Rackswitch G8052 -Ibm System Networking Rackswitch G8124 -Ibm System Networking Rackswitch G8124e -Ibm System Networking Rackswitch G8124er -Ibm System Networking Rackswitch G8316 -Ibm System Networking Rackswitch G8264 -Ibm System Networking Rackswitch G8264t -Ibm Bladecenter 1\\/10g FirmwareIbm Bladecenter 1\\/10g -Ibm Flex System Interconnect Fabric FirmwareIbm Flex System Interconnect Fabric -
4.3
CVSSv2
CVE-2013-4030
Integrated Management Module (IMM) 2 1.00 up to and including 2.00 on IBM System X and Flex System servers supports SSL cipher suites with short keys, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms via a brute-force attack against (...
Ibm Integrated Management Module 2 1.00Ibm Integrated Management Module 2 2.00Ibm Flex System Manager Node 8731 -Ibm Flex System Manager Node 8734 -Ibm System X3690 X5 -Ibm System X3650 M2 -Ibm Bladecenter Hs23eIbm System X Idataplex Dx360 M4 Server -Ibm System X3250 M4 -Ibm System X3100 M4 -Ibm Flex System Manager Node 7955 -Ibm System X3950 X5 -Ibm System X3850 X5 -Ibm System X3500 M3 -Ibm Bladecenter Hs23Ibm System X3530 M4 -Ibm System X3500 M4 -Ibm System X3300 M4 -Ibm System X3630 M4 Hd -Ibm System X3650 M3 -Ibm System X3630 M3 -Ibm System X3550 M2 -
4
CVSSv2
CVE-2018-9085
A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services (SPS) and the system Flash De...
Lenovo Flex System X240 M4 FirmwareLenovo Flex System X440 M4 FirmwareLenovo System X3750 M4 FirmwareIbm Bladecenter Hs23 FirmwareIbm Bladecenter Hs23e FirmwareIbm Flex System X220 M4 FirmwareIbm Flex System X222 M4 FirmwareIbm Flex System X240 M4 FirmwareIbm Flex System X280 X6 FirmwareIbm Flex System X440 M4 FirmwareIbm Flex System X480 X6 FirmwareIbm Flex System X880 X6 FirmwareIbm Idataplex Dx360 M4 FirmwareIbm Idataplex Dx360 M4 Water Cooled FirmwareIbm System X3100 M4 FirmwareIbm System X3100 M5 FirmwareIbm System X3250 M4 FirmwareIbm System X3250 M5 FirmwareIbm System X3300 M4 FirmwareIbm System X3500 M4 FirmwareIbm System X3530 M4 FirmwareIbm System X3550 M4 Firmware
4.3
CVSSv2
CVE-2013-0499
Cross-site scripting (XSS) vulnerability in the echo functionality on IBM WebSphere DataPower SOA appliances with firmware 3.8.2, 4.0, 4.0.1, 4.0.2, and 5.0.0 allows remote malicious users to inject arbitrary web script or HTML via a SOAP message, as demonstrated by the XML Firew...
Ibm Websphere Datapower Xc10 Appliance Firmware 3.8.2Ibm Websphere Datapower Xc10 Appliance Firmware 4.0Ibm Websphere Datapower Xc10 Appliance Firmware 4.0.1Ibm Websphere Datapower Xc10 Appliance Firmware 4.0.2Ibm Websphere Datapower Xc10 Appliance Firmware 5.0.0Ibm Websphere Datapower Xc10 Appliance -Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 5.0.0Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0.1Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0.2Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 3.8.2Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition Firmware 4.0Ibm Websphere Datapower Service Gateway Xg45 Virtual Edition -Ibm Websphere Datapower Service Gateway Xg45 Firmware 5.0.0Ibm Websphere Datapower Service Gateway Xg45 Firmware 3.8.2Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0.1Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0.2Ibm Websphere Datapower Service Gateway Xg45 Firmware 4.0Ibm Websphere Datapower Service Gateway Xg45 -Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 5.0.0Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 3.8.2Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 4.0.1Ibm Websphere Datapower Integration Appliance Xi52 Virtual Edition Firmware 4.0.2
7.5
CVSSv2
CVE-2014-0880
IBM SAN Volume Controller; Storwize V3500, V3700, V5000, and V7000; and Flex System V7000 with software 6.3 and 6.4 prior to 6.4.1.8, and 7.1 and 7.2 prior to 7.2.0.3, allow remote malicious users to obtain CLI access, and consequently cause a denial of service, via unspecified t...
Ibm Storwize V7000 Software 6.4.1.2Ibm Storwize V7000 Software 6.4.0.4Ibm Storwize V7000 Software 6.3.0.1Ibm Storwize V7000 Software 6.3.0.3Ibm Storwize V7000 Software 6.4.1.7Ibm Storwize V7000 Software 7.1.0.0Ibm Storwize V7000 Software 7.2.0.2Ibm Storwize V7000 Software 7.2.0.0Ibm Storwize V7000 Software 6.4.0.2Ibm Storwize V7000 Software 6.4.0.0Ibm Storwize V7000 Software 6.3.0.5Ibm Storwize V7000 Software 6.4.0.1Ibm Storwize V7000 Software 7.1.0.2Ibm Storwize V7000 Software 7.1.0.5Ibm Storwize V7000 Software 7.1.0.7Ibm Storwize V7000 Software 6.4.1.6Ibm Storwize V7000 Software 6.4.1.4Ibm Storwize V7000 Software 6.3.0.2Ibm Storwize V7000 Software 6.3.0.0Ibm Storwize V7000 Software 6.4.1.3Ibm Storwize V7000 Software 6.4.1.5Ibm Storwize V7000 Software 7.1.0.6
5
CVSSv2
CVE-2010-1612
The IBM WebSphere DataPower XML Accelerator XA35, Low Latency Appliance XM70, Integration Appliance XI50, B2B Appliance XB60, and XML Security Gateway XS40 SOA Appliances prior to 3.8.0.0, when a QLOGIC Ethernet interface is used, allow remote malicious users to cause a denial of...
Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.6Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.5Ibm Websphere Datapower Xml Accelerator Xa35Ibm Websphere Datapower Xml Accelerator Xa35 3.8.0.4Ibm Websphere Datapower Xml Accelerator Xa35 3.8.0.2Ibm Websphere Datapower Xml Accelerator Xa35 3.8.0.1Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.4Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.3Ibm Websphere Datapower Xml Accelerator Xa35 3.8.0.3Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.8Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.7Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3Ibm Websphere Datapower Xml Accelerator Xa35 3.7.2Ibm Websphere Datapower Xml Accelerator Xa35 3.8.0.0Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.9Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.2Ibm Websphere Datapower Xml Accelerator Xa35 3.7.3.1Ibm Websphere Datapower Xml Security Gateway Xs40 3.8.0.2Ibm Websphere Datapower Xml Security Gateway Xs40 3.8.0.1Ibm Websphere Datapower Xml Security Gateway Xs40 3.7.3.4Ibm Websphere Datapower Xml Security Gateway Xs40 3.7.3.2Ibm Websphere Datapower Xml Security Gateway Xs40 3.8.0.0
6.8
CVSSv2
CVE-2011-1683
IBM WebSphere Application Server (WAS) 6.0.x up to and including 6.0.2.43, 6.1.x prior to 6.1.0.37, and 7.0.x prior to 7.0.0.17 on z/OS, when a Local OS user registry or Federated Repository with RACF adapter is used, allows remote malicious users to obtain unspecified applicatio...
Ibm Websphere Application Server 6.0.2.32Ibm Websphere Application Server 6.0.2.29Ibm Websphere Application Server 6.0.1.11Ibm Websphere Application Server 6.0.1.7Ibm Websphere Application Server 6.0.2.13Ibm Websphere Application Server 6.0.2.1Ibm Websphere Application Server 6.0.1.5Ibm Websphere Application Server 6.0.1.3Ibm Websphere Application Server 6.0.1.1Ibm Websphere Application Server 6.0.2.27Ibm Websphere Application Server 6.0.2Ibm Websphere Application Server 6.0.2.2Ibm Websphere Application Server 6.0.2.19Ibm Websphere Application Server 6.0.2.17Ibm Websphere Application Server 6.0.2.37Ibm Websphere Application Server 6.0.2.35Ibm Websphere Application Server 6.0.2.33Ibm Websphere Application Server 6.0.2.41Ibm Websphere Application Server 6.0.2.43Ibm Websphere Application Server 6.0.2.31Ibm Websphere Application Server 6.0.2.30Ibm Websphere Application Server 6.0.1.15
7.2
CVSSv2
CVE-2017-1451
IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128178.
Ibm Db2 10.1.0.2Ibm Db2 10.1.0.4Ibm Db2 Connect 10.1.0.5Ibm Db2 Connect 10.5.0.1Ibm Db2 Connect 10.5.0.6Ibm Db2 10.5Ibm Db2 10.5.0.2Ibm Db2 10.5.0.6Ibm Db2 Connect 9.7Ibm Db2 Connect 9.7.0.7Ibm Db2 Connect 9.7.0.9Ibm Db2 9.7.0.4Ibm Db2 9.7.0.6Ibm Db2 9.7.0.10Ibm Db2 11.1.0.0Ibm Db2 Connect 11.1.0.0Ibm Db2 10.1Ibm Db2 10.1.0.1Ibm Db2 Connect 10.5.0.2Ibm Db2 Connect 10.5.0.3Ibm Db2 Connect 10.5.0.4Ibm Db2 Connect 10.5.0.5
7.2
CVSSv2
CVE-2017-1452
IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user to obtain elevated privilege and overwrite DB2 files. IBM X-Force ID: 128180.
Ibm Db2 Connect 10.1.0.2Ibm Db2 Connect 10.1.0.3Ibm Db2 Connect 10.1.0.4Ibm Db2 Connect 10.1.0.5Ibm Db2 Connect 10.5Ibm Db2 10.5.0.4Ibm Db2 10.5.0.5Ibm Db2 Connect 11.1.0.0Ibm Db2 10.1.0.4Ibm Db2 Connect 10.1Ibm Db2 Connect 10.5.0.1Ibm Db2 Connect 10.5.0.3Ibm Db2 10.5.0.2Ibm Db2 10.5.0.3Ibm Db2 Connect 9.7Ibm Db2 Connect 9.7.0.2Ibm Db2 Connect 9.7.0.9Ibm Db2 Connect 9.7.0.11Ibm Db2 9.7.0.6Ibm Db2 9.7.0.8Ibm Db2 10.5.0.6Ibm Db2 10.5.0.7
4.3
CVSSv2
CVE-2010-2327
mod_ibm_ssl in IBM HTTP Server 6.0 prior to 6.0.2.43, 6.1 prior to 6.1.0.33, and 7.0 prior to 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP request body in uploading over SSL, which might allow remote malicious users to...
Ibm Websphere Application Server 7.0.0.1Ibm Websphere Application Server 7.0.0.5Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.13Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.0.0.1Ibm Websphere Application Server 6.0.2.3Ibm Websphere Application Server 6.0.2.7Ibm Websphere Application Server 6.0.2.17Ibm Websphere Application Server 6.0.2.21Ibm Websphere Application Server 6.0.2.35Ibm Websphere Application Server 6.0.2.39Ibm Websphere Application Server 7.0.0.7Ibm Websphere Application Server 7.0.0.9Ibm Websphere Application Server 7.0Ibm Websphere Application Server 6.1Ibm Websphere Application Server 6.1.0Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.25
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook