NotCVE - vendor:"IBM" product:"InfoSphere Server" version:"11.7"

Page 5 of 101 results (0.010 seconds)

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-47983 – IBM InfoSphere Information Server cross-site scripting

https://notcve.org/view.php?id=CVE-2022-47983

01 Feb 2023 — IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 243161. • https://exchange.xforce.ibmcloud.com/vulnerabilities/243161 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0

CVE-2022-40752

https://notcve.org/view.php?id=CVE-2022-40752

16 Nov 2022 — IBM InfoSphere DataStage 11.7 is vulnerable to a command injection vulnerability due to improper neutralization of special elements. IBM X-Force ID: 236687. IBM InfoSphere DataStage 11.7 es vulnerable a una vulnerabilidad de inyección de comandos debido a una neutralización inadecuada de elementos especiales. ID de IBM X-Force: 236687. • https://exchange.xforce.ibmcloud.com/vulnerabilities/236687 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-40753 – IBM InfoSphere Information Server cross-site scripting

https://notcve.org/view.php?id=CVE-2022-40753

11 Nov 2022 — IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 236688. IBM InfoSphere Information Server 11.7 es vulnerable a Cross-Site Scripting (XSS). Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, alterando así la fun... • https://exchange.xforce.ibmcloud.com/vulnerabilities/236688 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-30608

https://notcve.org/view.php?id=CVE-2022-30608

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a "user that the website trusts. IBM X-Force ID: 227295. "IBM InfoSphere Information Server 11.7 es vulnerable a la Cross-Site Request Forgery (CSRF), lo que podría permitir a un atacante ejecutar acciones maliciosas y no autorizadas transmitidas desde un "usuario en el que confía el sitio web". ID de IBM X-Force: 227295. • https://www.ibm.com/support/pages/node/6829335 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-30615

https://notcve.org/view.php?id=CVE-2022-30615

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 227592. "IBM InfoSphere Information Server 11.7 es vulnerable a Cross-Site Scripting (XSS). Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, alterando así la f... • https://www.ibm.com/support/pages/node/6829311 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-35642

https://notcve.org/view.php?id=CVE-2022-35642

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 227592." "IBM InfoSphere Information Server 11.7 es vulnerable a Cross-Site Scripting (XSS). Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, alterando así la ... • https://www.ibm.com/support/pages/node/6829311 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-22425

https://notcve.org/view.php?id=CVE-2022-22425

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 223598." "IBM InfoSphere Information Server 11.7 es potencialmente vulnerable a la inyección CSV. Un atacante remoto podría ejecutar comandos arbitrarios en el sistema, causados por una validación incorrecta del contenido del archivo csv. • https://www.ibm.com/support/pages/node/6829953 • CWE-1236: Improper Neutralization of Formula Elements in a CSV File •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-35717

https://notcve.org/view.php?id=CVE-2022-35717

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-"Force ID: 231361. "IBM InfoSphere Information Server 11.7 podría permitir que un atacante autenticado localmente ejecute comandos arbitrarios en el sistema enviando una solicitud especialmente manipulada. IBM X-"Force ID: 231361. • https://www.ibm.com/support/pages/node/6829365 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •

CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2022-22442

https://notcve.org/view.php?id=CVE-2022-22442

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 could allow an authenticated user to access information restricted to users with elevated privileges due to improper access controls. IBM X-Force ID: 224427." "IBM InfoSphere Information Server 11.7 podría permitir que un usuario autenticado acceda a información restringida a usuarios con privilegios elevados debido a controles de acceso inadecuados. IBM X-Force ID: 224427". • https://www.ibm.com/support/pages/node/6829325 •

CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-40235

https://notcve.org/view.php?id=CVE-2022-40235

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 could allow a user to cause a denial of service by removing the ability to run jobs due to improper input validation. IBM X-Force ID: 235725." "IBM InfoSphere Information Server 11.7 podría permitir a un usuario provocar una Denegación de Servicio (DoS) al eliminar la capacidad de ejecutar trabajos debido a una validación de entrada incorrecta. IBM X-Force ID: 235725". • https://www.ibm.com/support/pages/node/6829369 • CWE-20: Improper Input Validation •

1...3 4 5 6 7