Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security directory server vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2022-33161
IBM Security Directory Server 6.4.0 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle t...
Ibm Security Directory Server 6.4.0.0
Ibm Security Directory Integrator 7.2.0
Ibm Security Verify Directory 10.0.0
Ibm Security Directory Suite 8.0.1
7.5
CVSSv3
CVE-2015-1977
Directory traversal vulnerability in the Web Administration tool in IBM Tivoli Directory Server (ITDS) prior to 6.1.0.74-ISS-ISDS-IF0074, 6.2.x prior to 6.2.0.50-ISS-ISDS-IF0050, and 6.3.x prior to 6.3.0.43-ISS-ISDS-IF0043 and IBM Security Directory Server (ISDS) prior to 6.3.1.1...
Ibm Tivoli Directory Server 6.2.0.49
Ibm Tivoli Directory Server 6.2.0.48
Ibm Tivoli Directory Server 6.2.0.47
Ibm Tivoli Directory Server 6.2.0.39
Ibm Tivoli Directory Server 6.2.0.38
Ibm Tivoli Directory Server 6.2.0.37
Ibm Tivoli Directory Server 6.2.0.36
Ibm Tivoli Directory Server 6.2.0.21
Ibm Tivoli Directory Server 6.2.0.20
Ibm Tivoli Directory Server 6.2.0.2
Ibm Tivoli Directory Server 6.2.0.8
Ibm Tivoli Directory Server 6.2.0.7
Ibm Tivoli Directory Server 6.2.0.6
Ibm Tivoli Directory Server 6.2.0.5
Ibm Tivoli Directory Server 6.2.0.31
Ibm Tivoli Directory Server 6.2.0.30
Ibm Tivoli Directory Server 6.2.0.3
Ibm Tivoli Directory Server 6.2.0.29
Ibm Tivoli Directory Server 6.2.0.11
Ibm Tivoli Directory Server 6.2.0.10
Ibm Tivoli Directory Server 6.2.0.1
Ibm Tivoli Directory Server 6.2.0.0
9.1
CVSSv3
CVE-2022-32755
IBM Security Directory Server 6.4.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 228505.
Ibm Security Directory Server 6.4.0.0
Ibm Security Verify Directory 10.0.0
Ibm Security Directory Suite 8.0.1
5.5
CVSSv3
CVE-2015-1976
IBM Security Directory Server could allow an authenticated user to execute commands into the web administration tool that would cause the tool to crash.
Ibm Tivoli Directory Server
Ibm Security Directory Server
NA
CVE-2014-6100
Cross-site scripting (XSS) vulnerability in the Admin UI in IBM Tivoli Directory Server 6.1 prior to 6.1.0.64-ISS-ITDS-IF0064, 6.2 prior to 6.2.0.39-ISS-ITDS-FP0039, and 6.3 prior to 6.3.0.33-ISS-ITDS-IF0033, and IBM Security Directory Server 6.3.1 prior to 6.3.1.7-ISS-ISDS-IF000...
Ibm Tivoli Directory Server 6.1.0.1
Ibm Tivoli Directory Server 6.1.0.10
Ibm Tivoli Directory Server 6.1.0.18
Ibm Tivoli Directory Server 6.1.0.19
Ibm Tivoli Directory Server 6.1.0.25
Ibm Tivoli Directory Server 6.1.0.26
Ibm Tivoli Directory Server 6.1.0.27
Ibm Tivoli Directory Server 6.1.0.33
Ibm Tivoli Directory Server 6.1.0.34
Ibm Tivoli Directory Server 6.1.0.45
Ibm Tivoli Directory Server 6.1.0.46
Ibm Tivoli Directory Server 6.1.0.11
Ibm Tivoli Directory Server 6.1.0.12
Ibm Tivoli Directory Server 6.1.0.2
Ibm Tivoli Directory Server 6.1.0.20
Ibm Tivoli Directory Server 6.1.0.28
Ibm Tivoli Directory Server 6.1.0.29
Ibm Tivoli Directory Server 6.1.0.35
Ibm Tivoli Directory Server 6.1.0.36
Ibm Tivoli Directory Server 6.1.0.47
Ibm Tivoli Directory Server 6.1.0.48
Ibm Tivoli Directory Server 6.2.0
7.5
CVSSv3
CVE-2019-4540
IBM Security Directory Server 6.4.0 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 165813.
Ibm Security Directory Server
7.2
CVSSv3
CVE-2019-4541
IBM Security Directory Server 6.4.0 uses incomplete blacklisting for input validation which allows malicious users to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 165814.
Ibm Security Directory Server
5.3
CVSSv3
CVE-2019-4562
IBM Security Directory Server 6.4.0 stores sensitive information in URLs. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history. IBM X-Force ID: 166623.
Ibm Security Directory Server
6.1
CVSSv3
CVE-2019-4548
IBM Security Directory Server 6.4.0 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly lau...
Ibm Security Directory Server
5.3
CVSSv3
CVE-2019-4550
IBM Security Directory Server 6.4.0 is deployed with active debugging code that can create unintended entry points. IBM X-Force ID: 165952.
Ibm Security Directory Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »