Vulnerabilidades em IBM
4.716 resultadosCVE-2016-8951—IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to a denial of service attack. An attacker can expEPSS 2.9%CVE-2021-20454HIGHIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML daEPSS 2.9%CVE-2018-1552MEDIUMIBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote attacker to execute arbitrary code on the system, causEPSS 2.9%CVE-2018-1614MEDIUMIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using malformed SAML responses from the SAML identity provider could allow a remote EPSS 2.9%CVE-2018-1553MEDIUMIBM WebSphere Application Server Liberty prior to 18.0.0.2 could allow a remote attacker to obtain sensitive information, caused by mishandlEPSS 2.9%CVE-2017-1731—IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security when using the Administrative Console. AEPSS 2.9%CVE-2017-1577—IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker could send a spEPSS 2.9%CVE-2017-1453—IBM Security Access Manager Appliance 9.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sendEPSS 2.9%CVE-2021-29781CRITICALIBM Partner Engagement Manager 2.0 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserializatioEPSS 2.9%CVE-2020-4135HIGHIBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated user to senEPSS 2.9%CVE-2020-4643HIGHIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML dEPSS 2.8%CVE-2018-1563MEDIUMIBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) is vulnerable to cross-site scripting. This vulEPSS 2.8%CVE-2020-4343HIGHIBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruptiEPSS 2.8%CVE-2018-1469CRITICALIBM API Connect Developer Portal 5.0.0.0 through 5.0.8.2 could allow an unauthenticated attacker to execute system commands using specially EPSS 2.8%CVE-2018-2011MEDIUMIBM API Connect 2018.1 through 2018.4.1.5 could allow an attacker to obtain sensitive information from a specially crafted HTTP request thatEPSS 2.8%CVE-2020-4467HIGHIBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by memory corruptionEPSS 2.8%CVE-2020-4422HIGHIBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruptiEPSS 2.8%CVE-2020-4285HIGHIBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruptiEPSS 2.8%CVE-2020-4468HIGHIBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by memory corruptionEPSS 2.8%CVE-2020-4288HIGHIBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruptiEPSS 2.8%