Vulnerabilidades em IBM
4.716 resultadosCVE-2018-1467MEDIUMThe IBM Storwize V7000 Unified management Web interface 1.6 exposes internal cluster details to unauthenticated users. IBM X-Force ID: 14039EPSS 2.0%CVE-2019-4336HIGHIBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote attacker to EPSS 2.0%CVE-2020-4821MEDIUMIBM InfoSphere Data Replication 11.4 and IBM InfoSphere Change Data Capture for z/OS 10.2.1, under certain configurations, could allow a useEPSS 2.0%CVE-2021-29908CRITICALThe IBM TS7700 Management Interface is vulnerable to unauthenticated access. By accessing a specially-crafted URL, an attacker may gain admiEPSS 2.0%CVE-2017-1467—A network layer security vulnerability in InfoSphere Information Server 9.1, 11.3, and 11.5 can lead to privilege escalation or unauthorizedEPSS 2.0%CVE-2022-22392MEDIUMIBM Planning Analytics Local 2.0 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victimEPSS 2.0%CVE-2020-4510HIGHIBM QRadar SIEM 7.3 and 7.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker couldEPSS 2.0%CVE-2020-4952HIGHIBM Security Guardium 11.2 could allow an authenticated user to gain root access due to improper access control. IBM X-Force ID: 192028.EPSS 2.0%CVE-2020-4759HIGHIBM FileNet Content Manager 5.5.4 and 5.5.5 is potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary commands oEPSS 2.0%CVE-2020-4776MEDIUMA path traversal vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could allow a remote attacker to traveEPSS 2.0%CVE-2021-38948HIGHIBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attEPSS 2.0%CVE-2017-1373—Reports executed in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 contains a vulnerability that could allow an authenticated user tEPSS 2.0%CVE-2019-4730HIGHIBM Cognos Analytics 11.0 and 11.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attackeEPSS 2.0%CVE-2017-1527—IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remEPSS 2.0%CVE-2022-22336HIGHIBM Sterling External Authentication Server and IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 could allow a remote user to consumeEPSS 2.0%CVE-2019-4034MEDIUMIBM Content Navigator 3.0CD is could allow an attacker to execute arbitrary code on a user's workstation. When editing an executable file inEPSS 2.0%CVE-2022-43864HIGHIBM Business Automation Workflow information disclosureEPSS 2.0%CVE-2018-1683MEDIUMIBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information, caused by the failure to encrypt ORBEPSS 2.0%CVE-2016-9698—IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processiEPSS 2.0%CVE-2012-3337MEDIUMIBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. An attacker could send a speEPSS 2.0%