Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websphere extreme scale vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2025
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 does not set the secure flag for the session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission within an http session.
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2026
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.1
NA
CVE-2015-2027
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 improperly performs logout actions, which allows remote malicious users to bypass intended access restrictions by leveraging an unattended workstation.
Ibm Websphere Extreme Scale 7.1.1
Ibm Websphere Extreme Scale 7.1.0.2
Ibm Websphere Extreme Scale 7.1.0
NA
CVE-2015-2030
IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 has an improper account-lockout setting, which makes it easier for remote malicious users to obtain access via a brute-force attack.
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
Ibm Websphere Extreme Scale 7.1.0.2
NA
CVE-2015-2031
Cross-site scripting (XSS) vulnerability in IBM WebSphere eXtreme Scale 7.1.0 prior to 7.1.0.3 and 7.1.1 prior to 7.1.1.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
Ibm Websphere Extreme Scale 7.1.0.2
NA
CVE-2015-4936
Unspecified vulnerability in IBM WebSphere eXtreme Scale 8.6 up to and including 8.6.0.8 allows remote malicious users to cause a denial of service via unknown vectors.
Ibm Websphere Extreme Scale 8.6.0.0
Ibm Websphere Extreme Scale 8.6.0.1
Ibm Websphere Extreme Scale 8.6.0.2
Ibm Websphere Extreme Scale 8.6.0.7
Ibm Websphere Extreme Scale 8.6.0.8
Ibm Websphere Extreme Scale 8.6.0.4
Ibm Websphere Extreme Scale 8.6.0.6
Ibm Websphere Extreme Scale 8.6.0.3
Ibm Websphere Extreme Scale 8.6.0.5
NA
CVE-2014-3059
Unspecified vulnerability in the Administrative Console on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote malicious users to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance -
NA
CVE-2014-3060
Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote malicious users to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network and capturing a session cookie.
Ibm Websphere Datapower Xc10 Appliance Firmware 2.5.0.0
Ibm Websphere Datapower Xc10 Appliance -
NA
CVE-2013-6734
IBM WebSphere eXtreme Scale Client 7.1 up to and including 8.6.0.4 does not properly isolate the cached data of different users, which allows remote authenticated users to obtain sensitive information in opportunistic circumstances by leveraging access to the same web container.
Ibm Websphere Extreme Scale Client
Ibm Websphere Extreme Scale Client 8.6.0.3
Ibm Websphere Extreme Scale Client 8.5.0.0
Ibm Websphere Extreme Scale Client 7.1.1.1
Ibm Websphere Extreme Scale Client 8.6.0.2
Ibm Websphere Extreme Scale Client 8.6.0.1
Ibm Websphere Extreme Scale Client 7.1.1.0
Ibm Websphere Extreme Scale Client 7.1.0.3
Ibm Websphere Extreme Scale Client 8.6.0.0
Ibm Websphere Extreme Scale Client 8.5.0.3
Ibm Websphere Extreme Scale Client 7.1.0.2
Ibm Websphere Extreme Scale Client 7.1.0.0
Ibm Websphere Extreme Scale Client 8.5.0.2
Ibm Websphere Extreme Scale Client 8.5.0.1
Ibm Websphere Extreme Scale Client 7.0.0.0
NA
CVE-2013-5390
Cross-site scripting (XSS) vulnerability in the monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Websphere Extreme Scale 8.6.0
Ibm Websphere Extreme Scale 7.1.0
Ibm Websphere Extreme Scale 7.1.1
Ibm Websphere Extreme Scale 8.5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »