CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

178 matches found

IBM Security Bulletins•added 2022/02/18 7:58 p.m.•27 views

Security Bulletin: Multiple security vulnerabilities with IBM FileNet Content Manager component in IBM Business Automation Workflow -CVE-2021-31811, CVE-2021-31812, CVE-2021-23926, CVE-2021-38965

Summary The embedded IBM FileNet Content Manager component, that is shipped with IBM Business Automation Workflow is vulnerable to multiple vulnerabilities. Vulnerability Details CVEID: CVE-2021-38965 DESCRIPTION: IBM FileNet Content Manager 5.5.4, 5.5.6, and 5.5.7 could allow a remote...

9.1CVSS8.4AI score0.02314EPSS

Exploits0Affected Software1

CNVD•added 2022/01/18 12:0 a.m.•27 views

IBM FileNet Content Manager Command Injection Vulnerability

IBM FileNet Content Manager is a content management solution for the FileNet P8 platform from IBM of America. The solution combines document management with ready-to-use workflow tools to manage images, videos, Web content, compliance documents, etc. IBM FileNet Content Manager in versions 5.5.4,...

9CVSS6.1AI score0.02314EPSS

Exploits0References1

OSV•added 2022/01/17 6:15 p.m.•2 views

CVE-2021-38965

IBM FileNet Content Manager 5.5.4, 5.5.6, and 5.5.7 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 212346...

8.8CVSS6.1AI score0.02314EPSS

Exploits0References2

IBM Security Bulletins•added 2022/01/14 11:51 p.m.•37 views

Security Bulletin: IBM FileNet Content Manager Operating System command injection security vulnerability

Summary FileNet Content Manager component Administration Console for Content Platform Engine ACCE user Operating System command injection security vulnerability Vulnerability Details CVEID: CVE-2021-38965 DESCRIPTION: IBM FileNet Content Manager could allow a remote authenticated attacker to...

9CVSS9AI score0.02314EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2022/01/14 11:39 p.m.•34 views

Security Bulletin: Apache XMLBeans XML Entity Expansion security vulnerability in IBM FileNet Content Manager

Summary IBM FileNet Content Manager has XML Entity Expansion security vulnerabilties with Apache XMLBeans. Vulnerability Details CVEID: CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML data. By sending...

9.1CVSS8.7AI score0.00444EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/10/26 9:23 p.m.•24 views

Security Bulletin: IBM FileNet Content Manager security vulnerability in Administration Console for Content Platform Engine (ACCE) in Apache Commons Compress

Summary IBM FileNet Content Manager security vulnerability in Administration Console for Content Platform Engine ACCE in Apache Commons Compress v1.18 Vulnerability Details CVE-ID: CVE-2019-12402 Description: Apache Commons Compress is vulnerable to a denial of service, caused by an error in the...

7.5CVSS0.6AI score0.00419EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/07/14 9:30 p.m.•66 views

Security Bulletin: Vulnerability in SSLv3 affects FileNet Content Manager, FileNet BPM and IBM Content Foundation (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is a configurable option in FileNet Content Manager and FileNet BPM products. If using SSLv3 with these products, please refer to the sections below to...

4.3CVSS4.2AI score0.93538EPSS

Exploits5Affected Software2

IBM Security Bulletins•added 2021/07/14 9:30 p.m.•50 views

Security Bulletin: One vulnerability in IBM FileNet Content Manager, IBM Content Foundation, IBM FileNet Content Federation Services and IBM FileNet Legacy Content Search Engine (CVE-2014-0114)

Summary A security vulnerability exists in IBM FileNet Content Manager, IBM Content Foundation, IBM FileNet Content Federation Services and IBM FileNet Legacy Content Search Engine. See the individual descriptions for the details. Vulnerability Details CVEID: CVE-2014-0114 CVE-2014-0114...

7.5CVSS9.2AI score0.92332EPSS

Exploits4Affected Software2

CNVD•added 2021/02/26 12:0 a.m.•5 views

IBM FileNet Content Manager Cross-Site Request Forgery Vulnerability

IBM FileNet Content Manager is a content management solution for the FileNet P8 platform from IBM USA. The solution combines document management with ready-to-use workflow tools to manage images, video, Web content, compliance documents, and more. IBM FileNet Content Manager suffers from a...

6.6AI score

Exploits0References1

CNVD•added 2020/12/21 12:0 a.m.•5 views

IBM Content Navigator and IBM FileNet Content Manager Cross-Site Scripting Vulnerability

IBM Content Navigator and IBM FileNet Content Manager are both products of IBM Corporation in the U.S. IBM Content Navigator is a Web client. The product supports searching and processing documents stored in the content server from a Web browser.IBM FileNet Content Manager is a content management...

6.4CVSS5.9AI score0.00413EPSS

Exploits1References1

Positive Technologies•added 2020/12/21 12:0 a.m.•4 views

PT-2020-18228 · Ibm · Ibm Content Navigator +1

Name of the Vulnerable Software and Affected Versions: IBM FileNet Content Manager and IBM Content Navigator version 3.0.CD Description: The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure...

6.4CVSS6.2AI score0.00413EPSS

Exploits1References4

CNVD•added 2020/11/10 12:0 a.m.•3 views

IBM FileNet Content Manager CSV Injection Vulnerability

IBM FileNet Content Manager is a comprehensive enterprise content management ECM solution that uniquely combines content management with out-of-the-box workflow processes to help organizations manage complex documents and control, share and quickly access critical business information. A CSV...

9.3CVSS7.8AI score0.00421EPSS

Exploits0References1

IBM Security Bulletins•added 2020/08/12 10:57 p.m.•41 views

Security Bulletin: Publicly disclosed vulnerability in Oracle Outside In Technology used by IBM FileNet Content Manager

Summary Multiple vulnerabilities may affect Oracle Outside In Technology OIT Version 8.5.3 used by IBM FileNet Content Manager. Oracle OIT issues disclosed in the Oracle October 2018 Critical Patch Update. Vulnerability Details CVEID: CVE-2018-18224 DESCRIPTION: An unspecified vulnerability in...

8.1CVSS1.5AI score0.02416EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/03/09 9:24 p.m.•22 views

Security Bulletin: An information disclosure vulnerability has been identified with the embedded Content Platform Engine component shipped with IBM Business Automation Workflow (CVE-2019-4572)

Summary A vulnerability in IBM FileNet Content Manager and Case Foundation, in some case, could contain user information in the log when Process Orchestration Web Services is invoked. Vulnerability Details CVEID: CVE-2019-4572 DESCRIPTION: IBM FileNet Content Manager 5.5.2 and 5.5.3 in specific...

4.4CVSS0.3AI score0.00095EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/02/14 10:5 p.m.•8 views

Security Bulletin: IBM FileNet Content Manager and Case Foundation security vulnerability in Administration Console for Content Platform Engine (ACCE)

Summary IBM FileNet Content Manager and Case Foundation have multiple security vulnerabilities in Administration Console for Content Platform Engine ACCE. Vulnerability Details CVEID: CVE-2019-4642 DESCRIPTION: IBM FileNet Content Manager allows web pages to be stored locally which can be read by...

0.5AI score

Exploits0Affected Software2

Prion•added 2019/10/14 2:15 p.m.•14 views

Code injection

IBM FileNet Content Manager 5.5.2 and 5.5.3 in specific configurations, could log the web service user credentials into a log file that could be accessed by an administrator on the local machine. IBM X-Force ID: 166798...

2.1CVSS4.4AI score0.00095EPSS

Exploits0References2Affected Software1

IBM Security Bulletins•added 2019/07/11 7:25 p.m.•29 views

Security Bulletin: Publicly disclosed vulnerability in Java used by IBM FileNet Content Manager

Summary The following security vulnerabilities exist in the Oracle Java Development Kits shipped with IBM FileNet Content Manager 5.2.1, 5.5.1, and 5.5.2. Vulnerability Details CVEID: CVE-2019-2684 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedde...

7.5CVSS1.1AI score0.01264EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2019/07/11 7:5 p.m.•24 views

Security Bulletin: Publicly disclosed vulnerability in Oracle Outside In Technology used by IBM FileNet Content Manager

Summary Multiple vulnerabilities may affect Oracle Outside In Technology OIT Version 8.5.3 used by IBM FileNet Content Manager. Oracle OIT issues disclosed in the Oracle April 2019 Critical Patch Update. Vulnerability Details CVEID: CVE-2019-2610 DESCRIPTION: An unspecified vulnerability in Oracl...

8.2CVSS1.1AI score0.01432EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2019/01/16 9:5 p.m.•29 views

Security Bulletin: Publicly disclosed vulnerability in Oracle Outside In Technology used by IBM FileNet Content Manager

Summary Multiple vulnerabilities may affect Oracle Outside In Technology OIT Version 8.5.3 used by IBM FileNet Content Manager. Oracle OIT issues disclosed in the Oracle July 2018 Critical Patch Update. Vulnerability Details CVEID: CVE-2018-3009 DESCRIPTION: An unspecified vulnerability in Oracle...

7.1CVSS1.2AI score0.13481EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2019/01/16 8:15 p.m.•20 views

Security Bulletin: IBM FileNet Content Manager affected by Apache PDFBox security vulnerability

Summary IBM FileNet Content Manager has addressed the following security vulnerability. Apache PDFBox is vulnerable to a denial of service, caused by an out of memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerabilit...

6.5CVSS0.8AI score0.00591EPSS

Exploits1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by