NotCVE - vendor:"Ibm" product:"Infosphere Information Server" version:"9.1.2"

Page 4 of 20 results (0.007 seconds)

CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0

CVE-2015-0180

https://notcve.org/view.php?id=CVE-2015-0180

The Connector Migration Tool in IBM InfoSphere Information Server 8.1 through 11.3 allows remote authenticated users to bypass intended restrictions on job creation and modification via unspecified vectors. Connector Migration Tool en IBM InfoSphere Information Server 8.1 hasta 11.3 permite a usuarios remotos autenticados evadir las restricciones sobre la creación y modificación de empleo a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=swg1JR51665 http://www-01.ibm.com/support/docview.wss?uid=swg21697306 • CWE-284: Improper Access Control •

CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0

CVE-2013-4059

https://notcve.org/view.php?id=CVE-2013-4059

Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified interfaces. Múltiples vulnerabilidades de XSS en el servidor de IBM InfoSphere Information 8.x hasta 8.5 FP3, 8.7.x hasta 8.7 FP2 y 9.1.x hasta 9.1.2.0 permiten a atacantes remotos inyectar script Web o HTML arbitrarios a través de interfaces no especificadas. • http://www-01.ibm.com/support/docview.wss?uid=swg1JR48815 http://www-01.ibm.com/support/docview.wss?uid=swg1JR49200 http://www-01.ibm.com/support/docview.wss?uid=swg1JR49206 http://www-01.ibm.com/support/docview.wss?uid=swg21666684 http://www.securityfocus.com/bid/66151 https://exchange.xforce.ibmcloud.com/vulnerabilities/86548 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0

CVE-2013-4058

https://notcve.org/view.php?id=CVE-2013-4058

Multiple SQL injection vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote authenticated users to execute arbitrary SQL commands via unspecified interfaces. Múltiples vulnerabilidades de inyección SQL en el servidor de IBM InfoSphere Information 8.x hasta 8.5 FP3, 8.7.x hasta 8.7 FP2 y 9.1.x hasta 9.1.2.0 permiten a usuarios remotos autenticados ejecutar comandos SQL arbitrarios a través de interfaces no especificadas. • http://www-01.ibm.com/support/docview.wss?uid=swg1JR48815 http://www-01.ibm.com/support/docview.wss?uid=swg1JR49200 http://www-01.ibm.com/support/docview.wss?uid=swg1JR49206 http://www-01.ibm.com/support/docview.wss?uid=swg21666684 http://www.securityfocus.com/bid/66155 https://exchange.xforce.ibmcloud.com/vulnerabilities/86547 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.8EPSS: 0%CPEs: 10EXPL: 0

CVE-2013-4057

https://notcve.org/view.php?id=CVE-2013-4057

Cross-site request forgery (CSRF) vulnerability in the XML Pack in IBM InfoSphere Information Server 8.5.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allows remote attackers to hijack the authentication of arbitrary users. Vulnerabilidad de CSRF en el pack de XML en el servidor de IBM InfoSphere Information 8.5.x hasta 8.5 FP3, 8.7.x hasta 8.7 FP2 y 9.1.x hasta 9.1.2.0 permite a atacantes remotos secuestrar la autenticación de usuarios arbitrarios. • http://www-01.ibm.com/support/docview.wss?uid=swg1JR48815 http://www-01.ibm.com/support/docview.wss?uid=swg1JR49200 http://www-01.ibm.com/support/docview.wss?uid=swg1JR49206 http://www-01.ibm.com/support/docview.wss?uid=swg21666684 http://www.securityfocus.com/bid/66154 https://exchange.xforce.ibmcloud.com/vulnerabilities/86546 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 6.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2013-4056

https://notcve.org/view.php?id=CVE-2013-4056

Cross-site request forgery (CSRF) vulnerability in the Data Quality Console and Information Analyzer components in IBM InfoSphere Information Server 8.7 through FP2 and 9.1 through 9.1.2.0 allows remote attackers to hijack the authentication of arbitrary users. Vulnerabilidad de CSRF en componentes Data Quality Console e Information Analyzer de IBM InfoSphere Information Server 8.7 hasta FP2 y 9.1 hasta la versión 9.1.2.0 permite a atacantes remotos secuestrar la autenticación de usuarios arbitrarios. • http://www-01.ibm.com/support/docview.wss?uid=swg21652413 https://exchange.xforce.ibmcloud.com/vulnerabilities/86545 • CWE-352: Cross-Site Request Forgery (CSRF) •

1 2 3 4