Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-37400
IBM Aspera Faspex 5.0.0 up to and including 5.0.7 could allow a local user to escalate their privileges due to insecure credential storage. IBM X-Force ID: 259677.
NA
CVE-2024-26847
In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: use correct function name for resetting TCE tables The PAPR spec spells the function name as "ibm,reset-pe-dma-windows" but in practice firmware uses the singular form: "ibm,reset-pe-...
NA
CVE-2024-22329
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 24.0.0.3 are vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, an attacker could exploit this vulnerability to conduct the ...
NA
CVE-2024-22354
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 24.0.0.3 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sen...
NA
CVE-2024-31887
IBM Security Verify Privilege 11.6.25 could allow an unauthenticated actor to obtain sensitive information from the SOAP API. IBM X-Force ID: 287651.
NA
CVE-2024-22334
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 could be vulnerable to incomplete revocation of permissions when d...
NA
CVE-2024-22339
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 is vulnerable to a sensitive information due to insufficient obfus...
NA
CVE-2024-22358
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 does not invalidate session after logout which could allow an auth...
NA
CVE-2024-22359
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 are vulnerable to cross-site scripting. This vulnerability allows ...
NA
CVE-2023-47714
IBM Sterling File Gateway 6.0.0.0 up to and including 6.0.3.9, 6.1.0.0 up to and including 6.1.2.3, and 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »