CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

IBM Security Bulletins•added 2024/01/29 7:14 p.m.•18 views

Security Bulletin: Security vulnerabilities have been identified in IBM® DB2® shipped with IBM Content Manager Enterprise Edition (CVE-2013-6747, CVE-2014-0963)

Summary IBM DB2 is shipped as a component of IBM Content Manager Enterprise Edition. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM DB2 is impacted by multiple TLS/SSL security...

7.1CVSS3.8AI score0.02767EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2024/01/29 7:11 p.m.•14 views

Security Bulletin: IBM Content Manager Enterprise Edition Resource Manager is affected by a Remote Code Execution Cross-site Scripting vulnerability

Summary IBM Content Manager Enterprise Edition Resource Manager has addressed the following vulnerability Vulnerability Details CVEID: CVE-2018-1502 DESCRIPTION: IBM Content Manager Enterprise Edition Resource Manager is vulnerable to cross-site scripting. This vulnerability allows users to embed...

5.4CVSS5.3AI score0.00237EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/04/28 9:40 a.m.•37 views

Security Bulletin: IBM Content Manager Enterprise Edition is affected by a vulnerability in Eclipse Openj9

Summary There is a vulnerability in Eclipse Openj9 used by IBM Content Manager Enterprise Edition. IBM Content Manager Enterprise Edition has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2022-3676 DESCRIPTION: Eclipse Openj9 could allow a remote attacker to bypass security...

6.5CVSS6.5AI score0.00341EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/01/04 11:29 p.m.•36 views

Security Bulletin: IBM Content Navigator is affected by Apache Commons Text due to IBM Content Manager onDemand connector [CVE-2022-42889]

Summary Apache Commons Text is used by IBM Content Navigator on container as part of the IBM Content Manager onDemand connector. CVE-2022-42889 The vulnerability has been addressed. Vulnerability Details CVEID:CVE-2022-42889 DESCRIPTION: Apache Commons Text could allow a remote attacker to execut...

9.8CVSS9.8AI score0.94251EPSS

Exploits41Affected Software1

IBM Security Bulletins•added 2022/09/30 7:19 a.m.•36 views

Security Bulletin: IBM Content Manager OnDemand for IBM i is affected by a vulnerability CVE-2018-25032

Summary There is vulnerability in Zlib used by IBM Content Manager OnDemand for IBM i. IBM Content Manager OnDemand for IBM i has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2018-25032 DESCRIPTION: Zlib is vulnerable to a denial of service, caused by a memory corruption in the...

7.5CVSS7.7AI score0.00089EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2022/09/28 7:46 a.m.•37 views

Security Bulletin: IBM Content Manager OnDemand for Multiplatforms is affected by a vulnerability CVE-2018-25032

Summary There is vulnerability in Zlib used by IBM Content Manager OnDemand for Multiplatforms. IBM Content Manager OnDemand for Multiplatforms has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2018-25032 DESCRIPTION: Zlib is vulnerable to a denial of service, caused by a memory...

7.5CVSS7.8AI score0.00089EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2022/09/25 9:6 p.m.•24 views

Security Bulletin: Content Manager Enterprise Edition with use of IBM Eclipse Help System (CVE-2013-0599, CVE-2013-0464, CVE-2013-0467)

Abstract Potential security vulnerabilities exist in the IBM Eclipse Help System that is shipped with the IBM Content Manager Enterprise Edition. Content Content: The products listed below may be affected by security vulnerabilities in the IBM Eclipse Help System. This issue is applicable only if...

5CVSS0.3AI score0.00265EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2022/08/16 7:43 p.m.•75 views

Security Bulletin: IBM Content Manager Enterprise Edition is is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-4104)

Summary Apache Log4j is used by IBM Content Manager Enterprise Edition, as part of is logging infrastructure. This fix includes Apache Log4j V2.17.1. Vulnerability Details CVEID:CVE-2021-4104 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused b...

7.5CVSS8.6AI score0.72202EPSS

Exploits9Affected Software1

IBM Security Bulletins•added 2022/01/14 11:44 p.m.•21 views

Security Bulletin: Cross Site Scripting (XSS) security vulnerability in IBM Content Manager Administration Console for Content Platform Engine (ACCE)

Summary IBM Content Manager component Administration Console for Content Platform Engine ACCE is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials...

5.4CVSS5.3AI score0.00143EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/02/01 4:21 p.m.•15 views

Security Bulletin: IBM Content Manager is affected by a potential information disclosure vulnerability

Summary IBM Content Navigator has addressed the following vulnerability. A potential vulnerability in the Apache Commons Codec module could allow information disclosure. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec information disclosure CVSS Base score: 7.5...

2.1AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2018/06/17 12:17 p.m.•20 views

Security Bulletin: Multiple vulnerabilities in Oracle Outside In Technology (OIT) affect FileNet Content Manager and IBM Content Foundation

Summary Security vulnerabilities exist in Oracle Outside In Technology OIT which affect the IBM FileNet Content Manager and IBM Content Foundation products. Vulnerability Details Advisory CVEs: CVE-2016-5558, CVE-2016-5574, CVE-2016-5577, CVE-2016-5578, CVE-2016-5579, CVE-2016-5588 CVEID:...

8.6CVSS0.5AI score0.03411EPSS

Exploits0Affected Software2

IBM Security Bulletins•added 2018/06/17 12:16 p.m.•38 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Content Manager Records Enabler (CVE-2016-1181 and CVE-2016-1182)

Summary IBM WebSphere Application Server is shipped as a component of IBM Content Manager Records Enabler. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin...

8.2CVSS2.8AI score0.10742EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2018/06/17 12:16 p.m.•49 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Content Manager Records Enabler (CVE-2016-3426, CVE-2016-3427)

10CVSS2.8AI score0.93287EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2018/06/17 12:16 p.m.•35 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Content Manager Records Enabler (CVE-2016-3427)

10CVSS2.8AI score0.93287EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2018/06/17 12:15 p.m.•44 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Content Manager Records Enabler (CVE-2016-3426, CVE-2016-3427)

10CVSS2.8AI score0.93287EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2018/06/17 12:14 p.m.•23 views

Security Bulletin: Vulnerability in InstallShield affects Content Manager OnDemand for Multiplatforms V9.5 - Windows Client (CVE-2016-2542)

Summary The Windows Client for IBM Content Manager OnDemand for Multiplatform V9.5 has a vulnerability caused by InstallShield. Vulnerability Details CVEID: CVE-2016-2542 DESCRIPTION: Flexera InstallShield could allow a local attacker to gain elevated privileges on the system, caused by an...

7.8CVSS1.2AI score0.00185EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2018/06/17 12:10 p.m.•25 views

Security Bulletin: IBM Content Navigator is potentially vulnerable to cross-site scripting, caused by improper validation of user-supplied input (CVE-2015-1888)

Summary IBM Content Navigator is potentially vulnerable to cross-site scripting, caused by improper validation of user-supplied input. Vulnerability Details CVEID: CVE-2015-1888 IBM Content Navigator is vulnerable to cross-site scripting. The vulnerability is caused by improper validation of user...

3.5CVSS2AI score0.00166EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2018/06/17 12:9 p.m.•19 views

Security Bulletin: IBM Content Navigator affected by reflected cross-site scripting issue <CVE-2014-8911>

Summary Reflected cross-site scripting issue using the "Accept-Language" header parameter affects IBM Content Navigator. Vulnerability Details CVEID: CVE-2014-8911 DESCRIPTION: IBM Content Navigator is vulnerable to reflected cross-site scripting, caused by improper validation of user supplied...

4.3CVSS0.9AI score0.00236EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2018/06/17 12:9 p.m.•59 views

Security Bulletin: Vulnerability in SSLv3 affects IBM Content Navigator (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in the Knowledge Center for IBM Content Navigator V2.0.3. Vulnerability Details CVE-ID: CVE-2014-3566 DESCRIPTION: Product could allow a remote...

4.3CVSS0.8AI score0.93538EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2018/06/17 12:8 p.m.•12 views

Security Bulletin: Open Source Apache Xalan-Java reported in April X-Force Report in IBM Content Navigator

Summary Apache Xalan-Java could allow a remote attacker to bypass security restrictions, caused by the improper handling of output properties. An attacker could exploit this vulnerability to bypass the secure processing feature to load arbitrary restricted classes. Vulnerability Details Apache...

1.6AI score

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by