Filtered by vendor Ibm
Subscriptions
Total
7565 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-1999-0111 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
RIP v1 is susceptible to spoofing. | ||||
CVE-1999-0112 | 2 Cde, Ibm | 2 Cde, Aix | 2025-04-03 | N/A |
Buffer overflow in AIX dtterm program for the CDE. | ||||
CVE-1999-0113 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
Some implementations of rlogin allow root access if given a -froot parameter. | ||||
CVE-1999-0118 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
AIX infod allows local users to gain root access through an X display. | ||||
CVE-1999-0122 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
Buffer overflow in AIX lchangelv gives root access. | ||||
CVE-1999-0208 | 3 Ibm, Nec, Sgi | 5 Aix, Asl Ux 4800, Ews-ux V and 2 more | 2025-04-03 | N/A |
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands. | ||||
CVE-1999-0337 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled. | ||||
CVE-1999-0338 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
AIX Licensed Program Product performance tools allow local users to gain root access. | ||||
CVE-1999-0345 | 4 Freebsd, Ibm, Sco and 1 more | 7 Freebsd, Aix, Sng and 4 more | 2025-04-03 | N/A |
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | ||||
CVE-2000-0652 | 1 Ibm | 1 Websphere Application Server | 2025-04-03 | N/A |
IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string. | ||||
CVE-2025-0154 | 1 Ibm | 1 Txseries For Multiplatforms | 2025-04-02 | 5.3 Medium |
IBM TXSeries for Multiplatforms 9.1 and 11.1 could disclose sensitive information to a remote attacker due to improper neutralization of HTTP headers. | ||||
CVE-2024-56474 | 1 Ibm | 1 Txseries For Multiplatforms | 2025-04-02 | 4.3 Medium |
IBM TXSeries for Multiplatforms 9.1 and 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | ||||
CVE-2024-56475 | 1 Ibm | 1 Txseries For Multiplatforms | 2025-04-02 | 5.4 Medium |
IBM TXSeries for Multiplatforms 9.1 and 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. | ||||
CVE-2024-56476 | 1 Ibm | 1 Txseries For Multiplatforms | 2025-04-02 | 5.3 Medium |
IBM TXSeries for Multiplatforms 9.1 and 11.1 could allow an attacker to enumerate usernames due to an observable login attempt response discrepancy. | ||||
CVE-2022-39167 | 1 Ibm | 1 Spectrum Virtualize | 2025-04-02 | 5.9 Medium |
IBM Spectrum Virtualize 8.5, 8.4, 8.3, 8.2, and 7.8, under certain configurations, could disclose sensitive information to an attacker using man-in-the-middle techniques. IBM X-Force ID: 235408. | ||||
CVE-2021-39011 | 2 Ibm, Linux | 2 Cloud Pak For Security, Linux Kernel | 2025-04-02 | 4.2 Medium |
IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.6.0 stores potentially sensitive information in log files that could be read by a privileged user. IBM X-Force ID: 213645. | ||||
CVE-2024-52362 | 1 Ibm | 3 App Connect Enterprise Certified Container, App Connect Enterprise Certified Containers Operands, App Connect Operator | 2025-04-02 | 4.3 Medium |
IBM App Connect Enterprise Certified Container 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, 12.7, and 12.8 could allow an authenticated user to cause a denial of service in the App Connect flow due to improper validation of server-side input. | ||||
CVE-2024-43186 | 1 Ibm | 1 Infosphere Information Server | 2025-04-01 | 5.3 Medium |
IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information that is stored locally under certain conditions. | ||||
CVE-2024-51477 | 1 Ibm | 1 Infosphere Information Server | 2025-04-01 | 4.3 Medium |
IBM InfoSphere Information Server 11.7 could allow an authenticated to obtain sensitive username information due to an observable response discrepancy. | ||||
CVE-2024-55895 | 1 Ibm | 1 Infosphere Information Server | 2025-04-01 | 2.7 Low |
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. |