Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm bigfix platform 9.2 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-0295
Cross-site request forgery (CSRF) vulnerability in the IBM BigFix Platform 9.0, 9.1, 9.2, and 9.5 prior to 9.5.2 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences. IBM X-Force ID: 111363.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
7.8
CVSSv3
CVE-2016-0214
IBM Tivoli Endpoint Manager could allow a remote malicious user to upload arbitrary files. A remote attacker could exploit this vulnerability to upload a malicious file. The only way that file would be executed would be through a phishing attack to trick an unsuspecting victim to...
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.5
1 Github repository
3.3
CVSSv3
CVE-2016-0296
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive information in log files that could be available to a local user.
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.0
3.7
CVSSv3
CVE-2016-0297
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) could allow a remote malicious user to obtain sensitive information due to a missing HTTP Strict-Transport-Security Header through man in the middle techniques.
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
8.1
CVSSv3
CVE-2016-0396
IBM Tivoli Endpoint Manager could allow a user under special circumstances to inject commands that would be executed with unnecessary higher privileges than expected.
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.0
10
CVSSv3
CVE-2016-6082
IBM BigFix Platform could allow a remote malicious user to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary code on the system.
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
6.5
CVSSv3
CVE-2016-6085
IBM BigFix Platform could allow an attacker on the local network to crash the BES and relay servers.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.0
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.1
7.5
CVSSv3
CVE-2017-1227
IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash the system. IBM X-Force ID: 123906.
Ibm Bigfix Platform 9.1
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
6.1
CVSSv3
CVE-2017-1521
IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) Platform and Applications (IBM BigFix Platform 9.2 and 9.5) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pot...
Ibm Bigfix Platform 9.5
Ibm Bigfix Platform 9.2
4.3
CVSSv3
CVE-2017-1226
IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) generates an error message in error logs that includes sensitive information about its environment which could be used in further attacks against the system. IBM X-Force ID: 123905.
Ibm Bigfix Platform 9.2
Ibm Bigfix Platform 9.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »