Lucene search
K

34 matches found

Cvelist
Cvelist
added 4 days ago34 views

CVE-2026-13772 IBM WebSphere eXtreme Scale's OQL is affected by remote code execution

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied class names via Class.forName and invokes their constructors with no allow-list at three distinct sinks SELECT NEW, enum literals, and reflection-based comparators; an authenticated remo...

7.5CVSS0.00283EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/23 12:0 a.m.9 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7277387)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 7277387 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of...

7.5CVSS6AI score0.00702EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/02 12:0 a.m.5 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7256003)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 7256003 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of...

7.5CVSS7.4AI score0.00633EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4953

Malware in sbrugna...

5CVSS6.4AI score0.01242EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-3934

Malware in sbrugna...

4.3CVSS4.7AI score0.01052EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-5230

Malware in sbrugna...

3.5CVSS6.4AI score0.00936EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/14 12:0 a.m.6 views

IBM WebSphere eXtreme Scale 8.6.1 < 8.6.1.6 (7239492)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 7239492 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of...

7.8CVSS6.9AI score0.00688EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.19 views

IBM WebSphere eXtreme Scale 8.6.1 < 8.6.1.6 DoS (7185951)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6 IBM. It is, therefore, affected by a vulnerability as referenced in the 7185951 advisory. - Netty is an asynchronous event-driven network application framework for rapid development of maintainable high...

5.5CVSS6.8AI score0.00408EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/11/13 12:0 a.m.12 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7175229)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 7175229 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of...

7.4CVSS6.6AI score0.01257EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/08/29 12:0 a.m.27 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7166876)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 7166876 advisory. - In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option...

7.5CVSS6.8AI score0.01361EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/27 12:0 a.m.41 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7150929)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 7150929 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of...

7.5CVSS6.6AI score0.01026EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/09/14 12:0 a.m.33 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.5 (6598349)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.5. It is, therefore, affected by multiple vulnerabilities as referenced in the 6598349 advisory. - Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported...

7.1CVSS6.1AI score0.06886EPSS
Exploits0References11
CNVD
CNVD
added 2021/06/01 12:0 a.m.5 views

Unspecified Vulnerability in IBM WebSphere Exteme Scale

IBM WebSphere Exteme Scale is a resilient, highly scalable in-memory data grid from IBM USA. It can provide predictable responsiveness to meet exponential demands on data. A security vulnerability exists in IBM WebSphere Exteme Scale Liberty, which can be exploited by a remote attacker to obtain...

6.2AI score
Exploits0References1
CNVD
CNVD
added 2021/06/01 12:0 a.m.5 views

IBM WebSphere Exteme Scale Cross-Site Scripting Vulnerability (CNVD-2021-39671)

IBM WebSphere Exteme Scale is a resilient, highly scalable in-memory data grid from IBM USA. It can provide predictable responsiveness to meet exponential demands on data. IBM WebSphere Exteme Scale Liberty suffers from a cross-site scripting vulnerability that allows a user to embed arbitrary...

6.1AI score
Exploits0References1
Cvelist
Cvelist
added 2021/01/06 1:10 p.m.21 views

CVE-2020-4336

IBM WebSphere eXtreme Scale 8.6.1 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 177932...

3.7CVSS4.9AI score0.00969EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/01/05 11:39 a.m.16 views

Security Bulletin: Vulnerability in IBM WebSphere eXtreme Scale Liberty Deployment could expose sensitive information.

Summary Vulnerability in IBM WebSphere eXtreme Scale Liberty Deployment could expose sensitive information. Vulnerability Details CVEID: CVE-2020-4336 DESCRIPTION: IBM WebSphere Extreme Scale stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized...

5.3CVSS0.8AI score0.00969EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2019/09/30 3:20 p.m.19 views

CVE-2019-4112

IBM WebSphere eXtreme Scale 8.6 Admin Console allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 158105...

4CVSS3.3AI score0.0034EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2019/09/25 6:39 p.m.23 views

Security Bulletin: Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment could expose sensitive information(CVE-2019-4106, CVE-2019-4109, CVE-2019-4112, CVE-2019-4115)

Summary Multiple vulnerabilities in IBM WebSphere eXtreme Scale Client could expose sensitive information. Vulnerability Details CVEID: CVE-2019-4106 DESCRIPTION: IBM WebSphere Extreme Scale Admin Console is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary...

6.1CVSS0.7AI score0.0125EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:5 a.m.20 views

Security Bulletin: Multiple vulnerabilities in IBM WebSphere eXtreme Scale Client could expose sensitive information (CVE-2016-2861, CVE-2016-0400)

Summary Multiple vulnerabilities in IBM WebSphere eXtreme Scale Client could expose sensitive information. Vulnerability Details CVEID: CVE-2016-2861 DESCRIPTION: IBM WebSphere eXtreme Scale uses weaker than expected security to encrypt data which could allow an attacker that is able to capture...

6.1CVSS0.6AI score0.0214EPSS
Exploits2Affected Software1
OSV
OSV
added 2016/07/02 2:59 p.m.3 views

CVE-2016-2861

IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 does not properly encrypt data, which makes it easier for remote attackers to obtain sensitive information by sniffing the network...

3.7CVSS5.8AI score0.01052EPSS
Exploits0References3
Rows per page
Query Builder