Page 6 of 189 results (0.008 seconds)

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2023-30441 – IBM Java information disclosure

https://notcve.org/view.php?id=CVE-2023-30441

29 Apr 2023 — IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE 8.0.7.0 through 8.0.7.11 components could expose sensitive information using a combination of flaws and configurations. IBM X-Force ID: 253188. • https://exchange.xforce.ibmcloud.com/vulnerabilities/253188 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-327: Use of a Broken or Risky Cryptographic Algorithm •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2023-25928 – IBM InfoSphere Information Server cross-site scripting

https://notcve.org/view.php?id=CVE-2023-25928

21 Feb 2023 — IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 247646. • https://exchange.xforce.ibmcloud.com/vulnerabilities/247646 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2023-24960 – IBM InfoSphere Information Server information disclosure

https://notcve.org/view.php?id=CVE-2023-24960

17 Feb 2023 — IBM InfoSphere Information Server 11.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 246333 • https://exchange.xforce.ibmcloud.com/vulnerabilities/246333 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0

CVE-2023-24964 – IBM InfoSphere Information Server information disclosure

https://notcve.org/view.php?id=CVE-2023-24964

17 Feb 2023 — IBM InfoSphere Information Server 11.7 could allow a local user to obtain sensitive information from a log files. IBM X-Force ID: 246463. • https://exchange.xforce.ibmcloud.com/vulnerabilities/246463 • CWE-312: Cleartext Storage of Sensitive Information •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2023-23475 – IBM Infosphere Information Server cross-site scripting

https://notcve.org/view.php?id=CVE-2023-23475

08 Feb 2023 — IBM Infosphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 245423. • https://www.ibm.com/support/pages/node/6890711 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-47983 – IBM InfoSphere Information Server cross-site scripting

https://notcve.org/view.php?id=CVE-2022-47983

01 Feb 2023 — IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 243161. • https://exchange.xforce.ibmcloud.com/vulnerabilities/243161 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0

CVE-2022-41733 – IBM InfoSphere Information Server denial of service

https://notcve.org/view.php?id=CVE-2022-41733

20 Jan 2023 — IBM InfoSphere Information Server 11.7 could allow a remote attacked to cause some of the components to be unusable until the process is restarted. IBM X-Force ID: 237583. IBM InfoSphere Information Server 11.7 podría permitir que un ataque remoto provoque que algunos de los componentes queden inutilizables hasta que se reinicie el proceso. ID de IBM X-Force: 237583. • https://exchange.xforce.ibmcloud.com/vulnerabilities/237583 • CWE-20: Improper Input Validation •

CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0

CVE-2022-40752

https://notcve.org/view.php?id=CVE-2022-40752

16 Nov 2022 — IBM InfoSphere DataStage 11.7 is vulnerable to a command injection vulnerability due to improper neutralization of special elements. IBM X-Force ID: 236687. IBM InfoSphere DataStage 11.7 es vulnerable a una vulnerabilidad de inyección de comandos debido a una neutralización inadecuada de elementos especiales. ID de IBM X-Force: 236687. • https://exchange.xforce.ibmcloud.com/vulnerabilities/236687 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-40753 – IBM InfoSphere Information Server cross-site scripting

https://notcve.org/view.php?id=CVE-2022-40753

11 Nov 2022 — IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 236688. IBM InfoSphere Information Server 11.7 es vulnerable a Cross-Site Scripting (XSS). Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario web, alterando así la fun... • https://exchange.xforce.ibmcloud.com/vulnerabilities/236688 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0

CVE-2022-40235

https://notcve.org/view.php?id=CVE-2022-40235

03 Nov 2022 — "IBM InfoSphere Information Server 11.7 could allow a user to cause a denial of service by removing the ability to run jobs due to improper input validation. IBM X-Force ID: 235725." "IBM InfoSphere Information Server 11.7 podría permitir a un usuario provocar una Denegación de Servicio (DoS) al eliminar la capacidad de ejecutar trabajos debido a una validación de entrada incorrecta. IBM X-Force ID: 235725". • https://www.ibm.com/support/pages/node/6829369 • CWE-20: Improper Input Validation •