Lucene search
K

49 matches found

osv
osv
added 2025/04/23 11:15 p.m.6 views

CVE-2025-25046

IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that could be exposed to an unauthorized actor using man in the middle techniques...

3.7CVSS5.8AI score0.00144EPSS
Exploits0References1
nvd
nvd
added 2025/04/23 11:15 p.m.31 views

CVE-2025-25046

IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that could be exposed to an unauthorized actor using man in the middle techniques...

3.7CVSS0.00144EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/04/23 12:0 a.m.4 views

PT-2025-17675 · Ibm · Ibm Infosphere Information Server

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server version 11.7 Description: The issue concerns the transmission of sensitive information via URL or query parameters, which could be exposed to an unauthorized actor using man-in-the-middle techniques...

3.7CVSS5.7AI score0.00144EPSS
Exploits0References8
cnvd
cnvd
added 2025/03/19 12:0 a.m.7 views

IBM InfoSphere Information Server and IBM InfoSphere DataStage Flow Designer Unspecified Vulnerability (CNVD-2025-05561)

IBM InfoSphere Information Server and IBM InfoSphere DataStage Flow Designer are both products of International Business Machines IBM.IBM InfoSphere Information Server is a data integration platform. The platform can be used to integrate data information obtained from various sources.IBM InfoSphe...

6.5CVSS6.3AI score0.00336EPSS
Exploits0References1
osv
osv
added 2024/12/11 1:15 p.m.3 views

CVE-2023-23472

IBM InfoSphere DataStage Flow Designer InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information that could aid in further attacks against the system...

6.5CVSS5.8AI score0.00336EPSS
Exploits0References1
cvelist
cvelist
added 2024/12/11 12:14 p.m.34 views

CVE-2023-23472 IBM InfoSphere Information Server information disclosure

IBM InfoSphere DataStage Flow Designer InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information that could aid in further attacks against the system...

3.1CVSS0.00336EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/12/11 12:14 p.m.25 views

CVE-2023-23472 IBM InfoSphere Information Server information disclosure

IBM InfoSphere DataStage Flow Designer InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information that could aid in further attacks against the system...

3.1CVSS6AI score0.00336EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/12/11 12:0 a.m.25 views

IBM InfoSphere Information Server和IBM InfoSphere DataStage Flow Designer 安全漏洞

IBM InfoSphere Information Server and IBM InfoSphere DataStage Flow Designer are both products of International Business Machines IBM.IBM InfoSphere Information Server is a data integration platform. The platform can be used to integrate data information obtained from various sources.IBM InfoSphe...

6.5CVSS6.2AI score0.00336EPSS
Exploits0References2
ibm
ibm
added 2024/07/23 3:6 p.m.23 views

Security Bulletin: IBM DataStage Flow Designer is vulnerable to information disclosure (CVE-2024-40704)

Summary An information disclosure vulnerability in DataStage Flow Designer was addressed. Vulnerability Details CVEID:CVE-2024-40704 DESCRIPTION: IBM DataStage Flow Designer could allow a privileged user to obtain sensitive information from authentication request headers. CVSS Base score: 4.9 CVS...

4.9CVSS4.8AI score0.0063EPSS
Exploits0Affected Software1
osv
osv
added 2023/07/19 1:15 a.m.3 views

CVE-2023-35898

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information due to an insecure security configuration in InfoSphere Data Flow Designer. IBM X-Force ID: 259352...

6.5CVSS5.8AI score0.0046EPSS
Exploits0References2
nvd
nvd
added 2023/07/19 1:15 a.m.16 views

CVE-2023-35898

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information due to an insecure security configuration in InfoSphere Data Flow Designer. IBM X-Force ID: 259352...

6.5CVSS5AI score0.0046EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/07/19 12:0 a.m.7 views

PT-2023-25370 · Ibm · Ibm Infosphere Information Server +1

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server version 11.7 Description: The issue is related to an insecure security configuration in InfoSphere Data Flow Designer, which could allow an authenticated user to obtain sensitive information. Recommendations:...

6.5CVSS6AI score0.0046EPSS
Exploits0References5
ibm
ibm
added 2023/07/17 3:56 a.m.28 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Eclipse Jetty (CVE-2023-26048)

Summary A vulnerability in Eclipse Jetty used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2023-26048 DESCRIPTION: Eclipse Jetty is vulnerable to a denial of service, caused by an out of memory flaw in the HttpServletRequest.getParameter or...

5.3CVSS5.6AI score0.0326EPSS
Exploits0Affected Software1
ibm
ibm
added 2023/07/17 3:24 a.m.18 views

Security Bulletin: IBM InfoSphere Information Server is affected by an information disclosure vulnerability (CVE-2023-35898)

Summary DataStage Flow Designer is an internal component of IBM InfoSphere Information Server. An information disclosure vulnerability in the DataStage Flow Designer was addressed. Vulnerability Details CVEID:CVE-2023-35898 DESCRIPTION: IBM InfoSphere Information Server could allow an authenticat...

6.5CVSS4.9AI score0.0046EPSS
Exploits0Affected Software1
cnnvd
cnnvd
added 2022/11/16 12:0 a.m.4 views

IBM InfoSphere DataStage Flow Designer 命令注入漏洞

IBM InfoSphere DataStage Flow Designer is a Web-based data stage flow designer from International Business Machines IBM. A command injection vulnerability exists in IBM InfoSphere DataStage Flow Designer version 11.7 that stems from vulnerability to a command injection vulnerability...

9.8CVSS8.4AI score0.0181EPSS
Exploits0References5
nvd
nvd
added 2021/11/02 4:15 p.m.12 views

CVE-2021-29738

IBM InfoSphere Data Flow Designer IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force...

5.5CVSS0.00467EPSS
Exploits0References2
osv
osv
added 2021/11/02 4:15 p.m.3 views

CVE-2021-29738

IBM InfoSphere Data Flow Designer IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force...

5.4CVSS6.1AI score0.00467EPSS
Exploits0References2
nvd
nvd
added 2021/11/02 4:15 p.m.26 views

CVE-2021-29737

IBM InfoSphere Data Flow Designer Engine IBM InfoSphere Information Server 11.7 component has improper validation of the REST API server certificate. IBM X-Force ID: 201301...

7.5CVSS0.00671EPSS
Exploits0References2
prion
prion
added 2021/11/02 4:15 p.m.13 views

Server side request forgery (ssrf)

IBM InfoSphere Data Flow Designer IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force...

5.5CVSS5.2AI score0.00467EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2021/11/02 4:0 p.m.16 views

CVE-2021-29738

IBM InfoSphere Data Flow Designer IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force...

5.4CVSS5.4AI score0.00467EPSS
Exploits0References2
Rows per page
Query Builder