Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tivoli application dependency discovery manager vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2012-5770
The SSL configuration in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x prior to 7.2.1.4 supports the MD5 hash algorithm, which makes it easier for man-in-the-middle malicious users to spoof servers and decrypt network traffic via a brute-force attack.
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.0
Ibm Tivoli Application Dependency Discovery Manager 7.2.1
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.3
445
VMScore
CVE-2013-3018
The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 up to and including 7.2.1.4 allows remote malicious users to obtain sensitive configuration information via a direct request, as demonstrated by happyaxis.jsp. IBM...
Ibm Tivoli Application Dependency Discovery Manager
Ibm Tivoli Application Dependency Discovery Manager 7.1.2
383
VMScore
CVE-2013-3023
IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 up to and including 7.2.1.4 might allow remote malicious users to obtain sensitive information about Tomcat credentials by sniffing the network for a session in which HTTP is used. IBM X-Force ID: 84361.
Ibm Tivoli Application Dependency Discovery Manager
Ibm Tivoli Application Dependency Discovery Manager 7.1.2
187
VMScore
CVE-2013-4040
IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2.x prior to 7.2.1.5 and 7.2.x prior to 7.2.2.0 on Unix use weak permissions (755) for unspecified configuration and log files, which allows local users to obtain sensitive information by reading the files. IBM X-For...
Ibm Tivoli Application Dependency Discovery Manager
Ibm Tivoli Application Dependency Discovery Manager 7.1.2
445
VMScore
CVE-2013-3017
IBM Tivoli Application Dependency Discovery Manager (TADDM) prior to 7.2.1.5 and 7.2.x prior to 7.2.2 make it easier for remote malicious users to defeat cryptographic protection mechanisms by leveraging support for weak SSL ciphers. IBM X-Force ID: 84353.
Ibm Tivoli Application Dependency Discovery Manager
Ibm Tivoli Application Dependency Discovery Manager 7.1.2
605
VMScore
CVE-2018-1455
IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 11029.
Ibm Tivoli Application Dependency Discovery Manager 7.3.0
Ibm Tivoli Application Dependency Discovery Manager 7.2.2
NA
CVE-2023-47142
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 up to and including 7.3.0.10 could allow an attacker on the organization's local network to escalate their privileges due to unauthorized API access. IBM X-Force ID: 270267.
Ibm Tivoli Application Dependency Discovery Manager
NA
CVE-2023-47144
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 up to and including 7.3.0.10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credent...
Ibm Tivoli Application Dependency Discovery Manager
NA
CVE-2023-47143
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 up to and including 7.3.0.10 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system...
Ibm Tivoli Application Dependency Discovery Manager
445
VMScore
CVE-2018-1675
IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could expose password hashes in stored in system memory on target systems that are configured to use TADDM. IBM X-Force ID: 145110.
Ibm Tivoli Application Dependency Discovery Manager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2