Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm security guardium key lifecycle manager 4.1.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-38972
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Ibm Security Guardium Key Lifecycle Manager
Ibm Security Guardium Key Lifecycle Manager 4.1.1
Ibm Security Key Lifecycle Manager
2.7
CVSSv3
CVE-2021-38973
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Ibm Security Guardium Key Lifecycle Manager
Ibm Security Guardium Key Lifecycle Manager 4.1.1
Ibm Security Key Lifecycle Manager
NA
CVE-2023-25921
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the malicious user to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 247620.
NA
CVE-2023-25926
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM...
NA
CVE-2023-25922
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the malicious user to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 247621.
NA
CVE-2023-25925
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 247632.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2