CVSS: 9.3EPSS: 1%CPEs: 5EXPL: 0CVE-2020-4305
https://notcve.org/view.php?id=CVE-2020-4305
09 Jul 2020 — IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 176677. IBM InfoSphere Information Server versiones 11.3, 11.5 y 11.7, podría permitir a un atacante remoto ejecutar código arbitrario en el sistema, causado por la deserial... • https://exchange.xforce.ibmcloud.com/vulnerabilities/176677 • CWE-502: Deserialization of Untrusted Data •
CVSS: 6.2EPSS: 0%CPEs: 2EXPL: 0CVE-2019-4220
https://notcve.org/view.php?id=CVE-2019-4220
06 Jun 2019 — IBM InfoSphere Information Server 11.7.1.0 stores a common hard coded encryption key that could be used to decrypt sensitive information. IBM X-Force ID: 159229. IBM InfoSphere Information Server versión 11.7.1.0 almacena una clave de encriptación con codificación común que se podría usar para descifrar información confidencial. ID de IBM X-Force: 159229. • https://exchange.xforce.ibmcloud.com/vulnerabilities/159229 • CWE-798: Use of Hard-coded Credentials •
CVSS: 8.3EPSS: 0%CPEs: 2EXPL: 0CVE-2019-4185
https://notcve.org/view.php?id=CVE-2019-4185
06 Jun 2019 — IBM InfoSphere Information Server 11.7.1 containers are vulnerable to privilege escalation due to an insecurely configured component. IBM X-Force ID: 158975. Los contenedores de IBM InfoSphere Information Server versión 11.7.1, son vulnerables a la escalada de privilegios debido a un componente configurado de forma no segura. ID de IBM X-Force: 158975. • https://exchange.xforce.ibmcloud.com/vulnerabilities/158975 •