Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
i vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-23470
IBM i 7.2, 7.3, 7.4, and 7.5 could allow an authenticated privileged administrator to gain elevated privileges in non-default configurations, as a result of improper SQL processing. By using a specially crafted SQL operation, the administrator could exploit the vulnerability to p...
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
NA
CVE-2009-4865
Multiple SQL injection vulnerabilities in escorts_search.php in I-Escorts Directory Script and Agency Script, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) search_name and (2) languages parameters. NOTE: some of thes...
I-escorts I-escorts Directory Script
I-escorts I-escorts Agency Script
5.4
CVSSv3
CVE-2022-34358
IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 23...
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
7.8
CVSSv3
CVE-2023-43064
Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause arbitrary code to run with the privilege of the user invoking the facsimile support. IBM X-Force ID: 267689.
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
7.5
CVSSv3
CVE-2017-1460
IBM i OSPF 6.1, 7.1, 7.2, and 7.3 is vulnerable when a rogue router spoofs its origin. Routing tables are affected by a missing LSA, which may lead to loss of connectivity. IBM X-Force ID: 128379.
Ibm I 6.1
Ibm I 7.2
Ibm I 7.3
Ibm I 7.1
7.8
CVSSv3
CVE-2023-30989
IBM Performance Tools for i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain all object access to the host operating system. IBM X-Force ID: 254017.
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
Ibm I 7.2
9.8
CVSSv3
CVE-2023-30990
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a remote malicious user to execute CL commands as QUSER, caused by an exploitation of DDM architecture. IBM X-Force ID: 254036.
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
Ibm I 7.2
NA
CVE-2009-4864
Multiple cross-site scripting (XSS) vulnerabilities in escorts_search.php in I-Escorts Directory Script and Agency Script allow remote malicious users to inject arbitrary web script or HTML via the (1) search_name and (2) languages parameters. NOTE: some of these details are obta...
I-escorts I-escorts Directory Script
I-escorts I-escorts Agency Script
1 EDB exploit
8.2
CVSSv3
CVE-2021-20501
IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network malicious user to send emails to non-existent local-domain recipients to the SMTP server, caused by using a non-default configuration. An attacker could exploit this vulnerability to consume unnecessary network bandwidth and disk...
Ibm I 7.2
Ibm I 7.1
Ibm I 7.3
Ibm I 7.4
7.8
CVSSv3
CVE-2023-40378
IBM Directory Server for IBM i contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain component access to the host operating system. IBM X-Force ID: 263584.
Ibm I 7.2
Ibm I 7.3
Ibm I 7.4
Ibm I 7.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »