Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere datapower xc10 appliance firmware 2.5.0.0 vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2014-3059
Unspecified vulnerability in the Administrative Console on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote malicious users to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance -
890
VMScore
CVE-2014-3060
Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote malicious users to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network and capturing a session cookie.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance -
890
VMScore
CVE-2013-5446
The console on IBM WebSphere DataPower XC10 appliances 2.1.0 and 2.5.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors.
Ibm Websphere Datapower Xc10 Appliance -
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
890
VMScore
CVE-2013-5403
Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.0 up to and including 2.5.0.1 allows remote malicious users to obtain administrative access via unknown vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.0.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.1
632
VMScore
CVE-2013-5428
IBM WebSphere DataPower XC10 appliances 2.5.0 do not require authentication for all administrative actions, which allows remote malicious users to cause a denial of service via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance -
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
534
VMScore
CVE-2014-3058
Cross-site request forgery (CSRF) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
356
VMScore
CVE-2014-6138
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to bypass intended grid-data access restrictions via unspecified vectors.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
312
VMScore
CVE-2014-6163
Cross-site scripting (XSS) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
187
VMScore
CVE-2015-1970
The IBM WebSphere DataPower XC10 appliance 2.1 up to and including 2.1.0.3 and 2.5 up to and including 2.5.0.4 retains data on SSD cards, which might allow physically proximate malicious users to obtain sensitive information by extracting a card and attaching it elsewhere.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.1
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.2
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.4
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.3
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.1
187
VMScore
CVE-2014-6143
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain sensitive information by reading a response.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance Firmware 2.1.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started