Page 23 of 710 results (0.014 seconds)

CVSS: 4.9EPSS: 0%CPEs: 12EXPL: 0

CVE-2021-29728

https://notcve.org/view.php?id=CVE-2021-29728

30 Aug 2021 — IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 201160. IBM Sterling Secure Proxy versiones 6.0.1, 6.0.2, 2.4.3.2 y 3.4.3.2, contiene credenciales embebidas, como una contraseña o una clave criptográfica, que usa para su propia autenticación de entrada, una comunicación de salida... • https://exchange.xforce.ibmcloud.com/vulnerabilities/201160 • CWE-798: Use of Hard-coded Credentials •

CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0

CVE-2021-29723

https://notcve.org/view.php?id=CVE-2021-29723

30 Aug 2021 — IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100. IBM Sterling Secure Proxy versiones 6.0.1, 6.0.2, 2.4.3.2 y 3.4.3.2, usa algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-ForceID: 201100. • https://exchange.xforce.ibmcloud.com/vulnerabilities/201100 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •

CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0

CVE-2021-29722

https://notcve.org/view.php?id=CVE-2021-29722

30 Aug 2021 — IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 201095. IBM Sterling Secure Proxy versiones 6.0.1, 6.0.2, 2.4.3.2 y 3.4.3.2, usa algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. IBM X-Force ID: 201095. • https://exchange.xforce.ibmcloud.com/vulnerabilities/201095 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •

CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-29862

https://notcve.org/view.php?id=CVE-2021-29862

26 Aug 2021 — IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 206086. IBM AIX versiones 7.1, 7.2 y VIOS versión 3.1, podrían permitir a un usuario local sin privilegios explotar una vulnerabilidad en el kernel de AIX para causar una denegación de servicio. IBM X-Force ID: 206086. • https://exchange.xforce.ibmcloud.com/vulnerabilities/206086 •

CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-29801

https://notcve.org/view.php?id=CVE-2021-29801

26 Aug 2021 — IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privileges. IBM X-Force ID: 203977. IBM AIX versiones 7.1, 7.2 y VIOS versión 3.1, podrían permitir a un usuario local sin privilegios explotar una vulnerabilidad en el kernel para alcanzar privilegios de root. IBM X-Force ID: 203977. • https://exchange.xforce.ibmcloud.com/vulnerabilities/203977 •

CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-29727

https://notcve.org/view.php?id=CVE-2021-29727

26 Aug 2021 — IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 201106. IBM AIX versiones 7.1, 7.2 y VIOS versión 3.1, podrían permitir a un usuario local explotar una vulnerabilidad en el kernel de AIX para causar una denegación de servicio. IBM X-Force ID: 201106. • https://exchange.xforce.ibmcloud.com/vulnerabilities/201106 •

CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2021-29741

https://notcve.org/view.php?id=CVE-2021-29741

02 Aug 2021 — IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478. IBM AIX versiones 7.1, 7.2 y VIOS versión 3.1, podrían permitir a un usuario local explotar una vulnerabilidad en Korn Shell (ksh) para alcanzar privilegios de root. IBM X-Force ID: 201478 • https://exchange.xforce.ibmcloud.com/vulnerabilities/201478 •

CVSS: 8.8EPSS: 0%CPEs: 11EXPL: 0

CVE-2021-29736

https://notcve.org/view.php?id=CVE-2021-29736

30 Jul 2021 — IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote user to gain elevated privileges on the system. IBM X-Force ID: 201300. IBM WebSphere Application Server versiones 7.0, 8.0, 8.5 y 9.0 podría permitir a un usuario remoto alcanzar privilegios elevados en el sistema. IBM X-Force ID: 201300 • https://exchange.xforce.ibmcloud.com/vulnerabilities/201300 •

CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 3

CVE-2021-20562 – IBM Sterling B2B Integrator Cross Site Scripting

https://notcve.org/view.php?id=CVE-2021-20562

27 Jul 2021 — IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5_3 and 6.1.0.0 through 6.1.0.2 vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 199232. IBM Sterling B2B Integrator Standard Edition versiones 5.2.0.0 hasta la versión 5.2.6.5_3 y versiones 6.1.0.0 hasta la versión 6.1.0.2 son vulnerables a las se... • https://packetstorm.news/files/id/164782 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 7EXPL: 0

CVE-2021-20560

https://notcve.org/view.php?id=CVE-2021-20560

26 Jul 2021 — IBM Sterling Connect:Direct Browser User Interface 1.4.1.1 and 1.5.0.2 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 199229. IBM Sterling Connect:Direct Browser User Interface versiones 1.4.1.1 y 1.5.0.2, podría permitir a un atacante remoto secuestrar la acción de hac... • https://exchange.xforce.ibmcloud.com/vulnerabilities/199229 • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •