Vulnerabilidades em IBM
4.716 resultadosCVE-2020-4574HIGHIBM Tivoli Key Lifecycle Manager does not require that users should have strong passwords by default, which makes it easier for attackers toEPSS 1.9%CVE-2016-8937—The IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) default authentication protocol is vulnerable to a brute force attack due EPSS 1.9%CVE-2016-0254—IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error EPSS 1.9%CVE-2021-20511MEDIUMIBM Security Verify Access Docker 10.0.0 could allow a remote attacker to traverse directories on the system. An attacker could send a speciEPSS 1.9%CVE-2019-4208HIGHIBM TRIRIGA Application Platform 3.5.3 and 3.6.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A EPSS 1.9%CVE-2019-4456HIGHIBM Daeja ViewONE Professional, Standard & Virtual 5.0.5 and 5.0.6 is vulnerable to an XML External Entity Injection (XXE) attack when proceEPSS 1.9%CVE-2021-29702HIGHDb2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1.4 and 11.5.5 is vulnerable to a denial of service as the server terminateEPSS 1.9%CVE-2017-1670—IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statemEPSS 1.9%CVE-2017-1175—IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements,EPSS 1.9%CVE-2019-4176MEDIUMIBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote attacker to bypass security restrictions, caused by anEPSS 1.9%CVE-2018-1524HIGHIBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain adminisEPSS 1.9%CVE-2017-1118—IBM WebSphere MQ Internet Pass-Thru 2.0 and 2.1 could allow n attacker to cause the MQIPT to stop responding due to an incorrectly configureEPSS 1.9%CVE-2021-20517MEDIUMIBM WebSphere Application Server Network Deployment 8.5 and 9.0 could allow a remote authenticated attacker to traverse directories. An attaEPSS 1.9%CVE-2018-1977MEDIUMIBM DB2 for Linux, UNIX and Windows 11.1 (includes DB2 Connect Server) contains a denial of service vulnerability. A remote, authenticated DEPSS 1.9%CVE-2017-1279—IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow a remote attacker to traverse directories on the system. An attacker could sEPSS 1.9%CVE-2017-1524MEDIUMIBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an authenticated user to obtain sensitive infoEPSS 1.9%CVE-2018-1970HIGHIBM Security Identity Manager 7.0.1 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attackeEPSS 1.9%CVE-2018-1844HIGHIBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remoteEPSS 1.9%CVE-2018-1588HIGHIBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6) is vulnerable to a XML External EntiEPSS 1.9%CVE-2018-1747HIGHIBM Security Key Lifecycle Manager 2.5, 2.6, 2.7, and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML EPSS 1.9%