Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infosphere information server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3071
Cross-site scripting (XSS) vulnerability in the Data Quality Console in IBM InfoSphere Information Server 11.3 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL for adding a project connection.
Ibm Infosphere Information Server 11.3
9.8
CVSSv3
CVE-2022-31768
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database.
Ibm Infosphere Information Server 11.7
5.4
CVSSv3
CVE-2020-4702
IBM InfoSphere Information Server 11.7 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. I...
Ibm Infosphere Information Server 11.7
6.1
CVSSv3
CVE-2020-4727
IBM InfoSphere Information Server 11.7 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly ...
Ibm Infosphere Information Server 11.7
3.3
CVSSv3
CVE-2020-4886
IBM InfoSphere Information Server 11.7 stores sensitive information in the browser's history that could be obtained by a user who has access to the same system. IBM X-Force ID: 190910.
Ibm Infosphere Information Server 11.7
6.5
CVSSv3
CVE-2016-5994
IBM InfoSphere Information Server contains a vulnerability that would allow an authenticated user to browse any file on the engine tier, and examine its contents.
Ibm Infosphere Information Server 11.5
9.8
CVSSv3
CVE-2020-27583
IBM InfoSphere Information Server 8.5.0.0 is affected by deserialization of untrusted data which could allow remote unauthenticated malicious users to execute arbitrary code. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Ibm Infosphere Information Server 8.5
8.8
CVSSv3
CVE-2021-29730
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 201164.
Ibm Infosphere Information Server 11.7
7.5
CVSSv3
CVE-2021-29875
IBM InfoSphere Information Server 11.7 could allow an malicious user to obtain sensitive information due to a insecure third party domain access vulnerability. IBM X-Force ID: 206572.
Ibm Infosphere Information Server 11.7
NA
CVE-2009-4239
Cross-site scripting (XSS) vulnerability in the Web console in IBM InfoSphere Information Server 8.1 before FP1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Infosphere Information Server 8.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »