CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-41733 – IBM InfoSphere Information Server denial of service
https://notcve.org/view.php?id=CVE-2022-41733
20 Jan 2023 — IBM InfoSphere Information Server 11.7 could allow a remote attacked to cause some of the components to be unusable until the process is restarted. IBM X-Force ID: 237583. IBM InfoSphere Information Server 11.7 podría permitir que un ataque remoto provoque que algunos de los componentes queden inutilizables hasta que se reinicie el proceso. ID de IBM X-Force: 237583. • https://exchange.xforce.ibmcloud.com/vulnerabilities/237583 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 1%CPEs: 5EXPL: 0CVE-2020-4305
https://notcve.org/view.php?id=CVE-2020-4305
09 Jul 2020 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 176677. IBM InfoSphere Information Server versiones 11.3, 11.5 y 11.7, podría permitir a un atacante remoto ejecutar código arbitrario en el sistema, causado por la deserial... • https://exchange.xforce.ibmcloud.com/vulnerabilities/176677 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-4347
https://notcve.org/view.php?id=CVE-2020-4347
16 Apr 2020 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could be subject to attacks based on privilege escalation due to inappropriate file permissions for files used by WebSphere Application Server Network Deployment. IBM X-Force ID: 178412. El IBM InfoSphere Information Server versiones 11.3, 11.5 y 11.7, podría ser objeto de ataques basados en una escalada de privilegios debido a permisos de archivo inapropiados para archivos utilizados por WebSphere Application Server Network Deployment. IBM X-Force ID: ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/178412 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 0CVE-2019-4237
https://notcve.org/view.php?id=CVE-2019-4237
01 Jul 2019 — A Cross-Frame Scripting vulnerability in IBM InfoSphere Information Server 11.3, 11.5, and 11.7 can allow an attacker to load the vulnerable application inside an HTML iframe tag on a malicious page. IBM X-Force ID: 159419. Una vulnerabilidad Cross-Frame Scripting en IBM InfoSphere Information Server versiones 11.3, 11.5, y 11.7 puede permitir que un atacante cargue la aplicación vulnerable en una etiqueta iframe HTML en una página maliciosa. ID de IBM X-Force: 159419. • https://exchange.xforce.ibmcloud.com/vulnerabilities/159419 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.1EPSS: 0%CPEs: 25EXPL: 0CVE-2018-1845
https://notcve.org/view.php?id=CVE-2018-1845
17 Jun 2019 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 150905. Las versiones 1.3, 11.5 y 11.7 de IBM InfoSphere Information Server son vulnerables a ataques de tipo XML External Entity Injection (XXE) al procesar datos XML. Un atacante remoto podría explotar esta vulnerabilidad para exponer info... • https://exchange.xforce.ibmcloud.com/vulnerabilities/150905 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2019-4238
https://notcve.org/view.php?id=CVE-2019-4238
25 Apr 2019 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 159464. IBM InfoSphere Information Server versión 11.3, versión 11.5 y versión 11.7 es vulnerable a Cross-Site Scripting (XSS). Esta vulnerabilidad permite a los usuarios introducir un código JavaScript arbit... • https://exchange.xforce.ibmcloud.com/vulnerabilities/159464 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-1917
https://notcve.org/view.php?id=CVE-2018-1917
02 Apr 2019 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow an authenticated user to access JSP files and disclose sensitive information. IBM X-Force ID: 152784. IBM InfoSphere Information Server 11.3, 11.5 y 11.7 podría permitir que un usuario autenticado acceda a archivos JSP y divulgue información sensible. IBM X-Force ID: 152784. • http://www.securityfocus.com/bid/107688 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-1906
https://notcve.org/view.php?id=CVE-2018-1906
02 Apr 2019 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7could allow an authenticated user to download code using a specially crafted HTTP request. IBM X-Force ID: 152663. IBM InfoSphere Information Server 11.3, 11.5 y 11.7 podría permitir que un usuario autenticado descargue código utilizando una petición HTTP especialmente manipulada. IBM X-Force ID: 152663. • http://www.securityfocus.com/bid/107735 •
CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-2018-1727
https://notcve.org/view.php?id=CVE-2018-1727
15 Feb 2019 — IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147630. Las versiones 9.1, 11.3, 11.5 y 11.7 de IBM InfoSphere Information Server son vulnerables a ataques de tipo XML External Entity Injection (XXE) al procesar datos XML. Un atacante remoto podría explotar esta vulnerabilidad para e... • https://exchange.xforce.ibmcloud.com/vulnerabilities/147630 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2017-1350
https://notcve.org/view.php?id=CVE-2017-1350
05 Jun 2018 — IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 could allow a user to escalate their privileges to administrator due to improper access controls. IBM X-Force ID: 126526. IBM InfoSphere Information Server 9.1, 11.3, 11.5 y 11.7 podría permitir que un usuario escale sus privilegios a administrador debido a controles de acceso incorrectos. IBM X-Force ID: 126526. • http://www.ibm.com/support/docview.wss?uid=swg22005503 •