Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-26847
In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: use correct function name for resetting TCE tables The PAPR spec spells the function name as "ibm,reset-pe-dma-windows" but in practice firmware uses the singular form: "ibm,reset-pe-...
NA
CVE-2024-22329
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 24.0.0.3 are vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, an attacker could exploit this vulnerability to conduct the ...
NA
CVE-2024-22354
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 24.0.0.3 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sen...
NA
CVE-2024-31887
IBM Security Verify Privilege 11.6.25 could allow an unauthenticated actor to obtain sensitive information from the SOAP API. IBM X-Force ID: 287651.
NA
CVE-2024-22334
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 could be vulnerable to incomplete revocation of permissions when d...
NA
CVE-2024-22339
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 is vulnerable to a sensitive information due to insufficient obfus...
NA
CVE-2024-22358
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 does not invalidate session after logout which could allow an auth...
NA
CVE-2024-22359
IBM UrbanCode Deploy (UCD) 7.0 up to and including 7.0.5.20, 7.1 up to and including 7.1.2.16, 7.2 up to and including 7.2.3.9, 7.3 up to and including 7.3.2.4 and IBM DevOps Deploy 8.0 up to and including 8.0.0.1 are vulnerable to cross-site scripting. This vulnerability allows ...
NA
CVE-2023-47714
IBM Sterling File Gateway 6.0.0.0 up to and including 6.0.3.9, 6.1.0.0 up to and including 6.1.2.3, and 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti...
NA
CVE-2024-27261
IBM Storage Defender - Resiliency Service 2.0.0 up to and including 2.0.2 could allow a privileged user to install a potentially dangerous tar file, which could give them access to subsequent systems where the package was installed. IBM X-Force ID: 283986.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »