CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

155 matches found

IBM Security Bulletins•added 2022/01/14 11:44 p.m.•21 views

Security Bulletin: Cross Site Scripting (XSS) security vulnerability in IBM Content Manager Administration Console for Content Platform Engine (ACCE)

Summary IBM Content Manager component Administration Console for Content Platform Engine ACCE is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials...

5.4CVSS5.3AI score0.00143EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2022/01/14 11:39 p.m.•34 views

Security Bulletin: Apache XMLBeans XML Entity Expansion security vulnerability in IBM FileNet Content Manager

Summary IBM FileNet Content Manager has XML Entity Expansion security vulnerabilties with Apache XMLBeans. Vulnerability Details CVEID: CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML data. By sending...

9.1CVSS8.7AI score0.00444EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/11/15 9:13 p.m.•35 views

Security Bulletin: Multiple Apache PDFBox security vulnerabilities

Summary FileNet Content Manager FNCM has multiple Apache PDFBox security vulnerabilities in Content Platform Engine CPE and Content Search Services CSS Vulnerability Details CVEID: CVE-2021-31811 DESCRIPTION: Apache PDFBox is vulnerable to a denial of service, caused by an out-of-memory exception...

5.5CVSS0.2AI score0.00231EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/10/26 9:23 p.m.•24 views

Security Bulletin: IBM FileNet Content Manager security vulnerability in Administration Console for Content Platform Engine (ACCE) in Apache Commons Compress

Summary IBM FileNet Content Manager security vulnerability in Administration Console for Content Platform Engine ACCE in Apache Commons Compress v1.18 Vulnerability Details CVE-ID: CVE-2019-12402 Description: Apache Commons Compress is vulnerable to a denial of service, caused by an error in the...

7.5CVSS0.6AI score0.00419EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/10/26 9:21 p.m.•52 views

Security Bulletin: FileNet Content Manager is affected by a HTTP Client vulnerability

Summary FileNet Content Manager has addressed the following HTTP Client v3.0.1 and v4.0.1 vulnerability. Vulnerability Details CVEID: CVE-2012-5783 DESCRIPTION: Apache Commons HttpClient, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, could allow a remote...

5.8CVSS0.1AI score0.00616EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/10/12 11:18 p.m.•22 views

Security Bulletin: IBM WebSphere Liberty XML External Entity (XXE) Injection security vulnerability in IBM FileNet Content Manager

Summary IBM FileNet Content Manager Content Platform Engine CPE containers are vulnerable to IBM WebSphere Liberty XML External Entity XXE Injection security vulnerabilities. Vulnerability Details CVEID: CVE-2021-20492 DESCRIPTION: IBM WebSphere Application Server Java Batch is vulnerable to an X...

8.2CVSS1.4AI score0.00304EPSS

Exploits0Affected Software1

NCSC•added 2021/10/08 12:0 a.m.•1 views

Vulnerabilities fixed in IBM FileNet Content manager

IBM has fixed two vulnerabilities in the PDFBox module in the FileNet Content Manager. An unauthenticated malicious person at remote can exploit the vulnerabilities to cause a denial-of-service by tricking a victim into processing a rogue PDF file or have it processed. IBM has released updates to...

5.5CVSS6.9AI score0.00231EPSS

Exploits0

IBM Security Bulletins•added 2021/07/14 9:30 p.m.•33 views

Security Bulletin: Vulnerability in RC4 stream cipher affects IBM FileNet Content Manager, IBM FileNet BPM and IBM Content Foundation products (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack affects products that use the SSL/TLS protocol as a means for secure communication. The IBM FileNet Content Manager, IBM FileNet BPM and IBM Content Foundation products can be configured to use the SSL/TLS protocol and are thus potentially affected by this...

5CVSS4.8AI score0.2382EPSS

Exploits0Affected Software3

CNVD•added 2021/02/26 12:0 a.m.•5 views

IBM FileNet Content Manager Cross-Site Request Forgery Vulnerability

IBM FileNet Content Manager is a content management solution for the FileNet P8 platform from IBM USA. The solution combines document management with ready-to-use workflow tools to manage images, video, Web content, compliance documents, and more. IBM FileNet Content Manager suffers from a...

6.6AI score

Exploits0References1

CNNVD•added 2021/02/24 12:0 a.m.•3 views

IBM FileNet Content Manager 跨站请求伪造漏洞

5.7AI score

Exploits0References1

NCSC•added 2020/12/22 12:0 a.m.•1 views

Vulnerability fixed in IBM Filenet Content Manager

IBM has fixed a vulnerability in Filenet Content Manager and Content Navigator. An authenticated malicious party could exploit the exploit the vulnerability for a cross-site scripting XSS attack and thus potentially obtain the login credentials of other users find out. IBM has released updates to...

6.4CVSS5.7AI score0.00413EPSS

Exploits1

OSV•added 2020/12/21 6:15 p.m.•2 views

CVE-2020-4757

IBM FileNet Content Manager and IBM Content Navigator 3.0.CD is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.4CVSS5.2AI score0.00413EPSS

Exploits1References3

Cvelist•added 2020/12/21 5:50 p.m.•11 views

CVE-2020-4757

6.4CVSS5.8AI score0.00413EPSS

Exploits1References3

CNVD•added 2020/12/21 12:0 a.m.•5 views

IBM Content Navigator and IBM FileNet Content Manager Cross-Site Scripting Vulnerability

IBM Content Navigator and IBM FileNet Content Manager are both products of IBM Corporation in the U.S. IBM Content Navigator is a Web client. The product supports searching and processing documents stored in the content server from a Web browser.IBM FileNet Content Manager is a content management...

6.4CVSS5.9AI score0.00413EPSS

Exploits1References1

Positive Technologies•added 2020/12/21 12:0 a.m.•4 views

PT-2020-18228 · Ibm · Ibm Content Navigator +1

Name of the Vulnerable Software and Affected Versions: IBM FileNet Content Manager and IBM Content Navigator version 3.0.CD Description: The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure...

6.4CVSS6.2AI score0.00413EPSS

Exploits1References4

IBM Security Bulletins•added 2020/11/10 10:46 p.m.•23 views

Security Bulletin: WebSphere Application Server security vulnerability in FileNet Content Manager

Summary WebSphere Application Server security vulnerability in FileNet Content Manager Vulnerability Details CVEID: CVE-2020-4329 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 20.0.0.4 could allow a remote, authenticated attacker to obtain sensitive...

4.3CVSS1.2AI score0.00208EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/11/10 10:42 p.m.•16 views

Security Bulletin: Cross Site Scripting security vulnerabilities in FileNet Content Manager

Summary Cross Site Scripting security vulnerabilities in FileNet Content Manager in Administration Console for Content Platform Engine ACCE Vulnerability Details CVEID: CVE-2020-4447 DESCRIPTION: IBM FileNet Content Manager is vulnerable to cross-site scripting. This vulnerability allows users to...

5.4CVSS0.8AI score0.00236EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/11/10 10:36 p.m.•14 views

Security Bulletin: IBM Content Navigator logon response security vulnerability in FileNet Content Manager

Summary Security vulnerability in IBM Content Navigator logon response in FileNet Content Manager Vulnerability Details CVEID: CVE-2019-4679 DESCRIPTION: IBM Content Navigator 3.0CD could allow an authenticated user to gain information about the hosting operating system and version that could be...

4.3CVSS0.7AI score0.00222EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/11/10 10:15 p.m.•22 views

Security Bulletin: CSV Injection Security vulnerability in ACCE in FileNet Content Manager

Summary Administration Console for Content Platform Engine ACCE CSV Injection Security vulnerability exists in FileNet Content Manager Vulnerability Details CVEID: CVE-2020-4759 DESCRIPTION: IBM FileNet Content Manager is potentially vulnerable to CVS Injection. A remote attacker could execute...

9.3CVSS2.5AI score0.00421EPSS

Exploits0Affected Software1

OSV•added 2020/11/09 9:15 p.m.•2 views

CVE-2020-4759

IBM FileNet Content Manager 5.5.4 and 5.5.5 is potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 188736...

7.8CVSS7.3AI score0.00421EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by