Lucene search
+L

247 matches found

Cvelist
Cvelist
added 2026/03/25 8:22 p.m.23 views

CVE-2026-2485 IBM InfoSphere Information Server Cross-Site Scripting

IBM Infosphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

4.8CVSS0.00187EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/25 5:41 p.m.6 views

Security Bulletin: IBM InfoSphere Information Server is vulnerable to HTTP header injection (CVE-2025-14807)

Summary A HTTP header injection vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-14807 DESCRIPTION: IBM InfoSphere Information Server is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This coul...

6.5CVSS5.7AI score0.00221EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.9 views

PT-2026-28112

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable due to Insecure Direct Object Reference IDOR...

5.7CVSS5.8AI score0.00327EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/24 7:29 p.m.11 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Undertow

Summary Multiple vulnerabilities in Undertow that is used by InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2024-3884 DESCRIPTION: A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the...

9.6CVSS5.8AI score0.01256EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:3 a.m.13 views

CVE-2024-39751

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 297429...

4.3CVSS5.9AI score0.00419EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-0735

Malware in sbrugna...

5.8CVSS6.4AI score0.01045EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-16155

Malware in sbrugna...

5.3CVSS4.2AI score0.00868EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-13864

Malware in sbrugna...

4.3CVSS4.8AI score0.00994EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-12033

Malware in sbrugna...

5.9CVSS6.3AI score0.01499EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-12496

Malware in sbrugna...

6.5CVSS5.7AI score0.01464EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-2006

Malware in sbrugna...

1.9CVSS6.4AI score0.0035EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-29760

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00256EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-38592

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00564EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/29 9:4 p.m.4 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Apache Wink (CVE-2010-2245)

Summary A vulnerability in Apache Wink that is used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2010-2245 DESCRIPTION: XML External Entity XXE vulnerability in Apache Wink 1.1.1 and earlier allows remote attackers to read arbitrary files or cause a denial o...

7.4CVSS6.6AI score0.1162EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/29 5:35 p.m.22 views

Security Bulletin: IBM InfoSphere Information Server is vulnerable to sensitive information disclosure (CVE-2025-25045)

Summary A sensitive information disclosure vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-25045 DESCRIPTION: IBM InfoSphere Information Server authenticated user to obtain sensitive information when a detailed technical error message is...

4.3CVSS5.2AI score0.00261EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/21 12:45 p.m.6 views

CVE-2025-3629 IBM InfoSphere Information Server file manipulation

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an authenticated user to delete another user's comments due to improper ownership management...

4.3CVSS4.4AI score0.00187EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/20 11:11 p.m.9 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in netty-handler (CVE-2025-24970)

Summary A vulnerability in Netty that is used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-24970 DESCRIPTION: Netty, an asynchronous, event-driven network application framework, has a vulnerability starting in version 4.1.91.Final and prior to version...

7.5CVSS6.6AI score0.02112EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/20 10:53 p.m.8 views

Security Bulletin: IBM InfoSphere Information Server is vulnerable due to improper ownership management (CVE-2025-3629)

Summary A vulnerability due to improper ownership management in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-3629 DESCRIPTION: IBM InfoSphere Information Server could allow an authenticated user to delete another user's comments due to improper ownership...

4.3CVSS6.2AI score0.00187EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/31 12:0 a.m.4 views

PT-2025-23422 · Ibm · Ibm Infosphere Information Server

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server version 11.7 Description: The issue concerns the storage of credential information for database authentication in a cleartext parameter file. This file could be viewed by an authenticated user, potentially...

6.8CVSS5.8AI score0.00189EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 5:12 a.m.6 views

CVE-2023-23473

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 245400...

8.8CVSS6.7AI score0.00293EPSS
Exploits0References1
Rows per page
Query Builder