Lucene search
+L

45 matches found

OSV
OSV
added 2025/04/23 11:15 p.m.3 views

CVE-2025-25045

IBM InfoSphere Information 11.7 Server authenticated user to obtain sensitive information when a detailed technical error message is returned in a request. This information could be used in further attacks against the system...

4.3CVSS5.8AI score0.00261EPSS
Exploits0References1
OSV
OSV
added 2025/03/29 1:15 p.m.3 views

CVE-2024-55895

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS5.8AI score0.00333EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/19 6:8 p.m.13 views

CVE-2024-51459 IBM InfoSphere Server Information command execution

IBM InfoSphere Information Server 11.7 could allow a local user to execute privileged commands due to the improper handling of permissions...

8.4CVSS8.2AI score0.00131EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 4:15 p.m.2 views

CVE-2024-52901

IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or stop working due to improper input validation...

6.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/07/12 6:15 p.m.39 views

CVE-2024-40690

IBM InfoSphere Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 29772...

5.4CVSS0.00245EPSS
Exploits0References2
OSV
OSV
added 2024/07/12 6:15 p.m.5 views

CVE-2024-40690

IBM InfoSphere Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 29772...

5.4CVSS5.4AI score0.00245EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/12 12:0 a.m.9 views

PT-2024-28986 · Ibm · Ibm Infosphere Server

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Server version 11.7 Description: The issue allows an authenticated user to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure within a trusted...

5.4CVSS6.8AI score0.00245EPSS
Exploits0References6
OSV
OSV
added 2024/06/30 4:15 p.m.4 views

CVE-2023-35022

IBM InfoSphere Information Server 11.7 could allow a local user to update projects that they do not have the authorization to access. IBM X-Force ID: 258254...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References2
OSV
OSV
added 2023/12/01 9:15 p.m.4 views

CVE-2023-42009

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 265504...

5.4CVSS5.4AI score0.00415EPSS
Exploits0References2
OSV
OSV
added 2023/12/01 9:15 p.m.5 views

CVE-2023-40699

IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of service due to improper input validation. IBM X-Force ID: 265161...

7.5CVSS5.8AI score0.01087EPSS
Exploits0References2
OSV
OSV
added 2023/12/01 8:15 p.m.8 views

CVE-2023-43015

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 266064...

5.4CVSS5.4AI score0.00415EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/02/13 12:0 a.m.6 views

The vulnerability in the web interface of the IBM InfoSphere Information Server’s data integration software allows a perpetrator to execute arbitrary JavaScript code and gain unauthorized access to protected information.

The vulnerability of the web interface of the IBM InfoSphere Information Server software integration platform is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code and gain...

6.4CVSS6.3AI score0.00434EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2022/04/28 12:0 a.m.2 views

IBM InfoSphere Information Server 跨站脚本漏洞

IBM InfoSphere Information Server is a set of data integration platforms from IBM in the United States. The platform can be used to integrate data information obtained from various sources. A cross-site scripting vulnerability exists in IBM InfoSphere Information Server version 11.7, which can be...

5.4CVSS5.7AI score0.00461EPSS
Exploits0References3
OSV
OSV
added 2021/07/09 5:15 p.m.4 views

CVE-2021-29712

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 200966...

6.1CVSS6AI score0.00653EPSS
Exploits0References2
CNVD
CNVD
added 2020/05/19 12:0 a.m.3 views

IBM InfoSphere Information Server Cross-Site Request Forgery Vulnerability (CNVD-2020-31093)

IBM InfoSphere Information Server is a set of data integration platforms from IBM in the United States. The platform can be used to integrate data information obtained from various sources. A cross-site request forgery vulnerability exists in IBM InfoSphere Information Server. An attacker could...

6.5CVSS6.5AI score0.00482EPSS
Exploits0References1
OSV
OSV
added 2020/05/06 2:15 p.m.2 views

CVE-2020-4384

IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-For...

5.4CVSS5.7AI score0.00561EPSS
Exploits0References2
CNVD
CNVD
added 2019/11/04 12:0 a.m.3 views

Multiple IBM products open to redirection vulnerabilities (CNVD-2019-39758)

IBM InfoSphere Information Analyzer, InfoSphere Information Governance Catalog, and InfoSphere Information Server on Cloud are products of IBM Corporation of the U.S.A. IBM IBM InfoSphere Information Server on Cloud is a cloud-based data integration platform, and IBM InfoSphere Information...

6.5AI score
Exploits0References1
OSV
OSV
added 2019/06/06 1:29 a.m.2 views

CVE-2019-4185

IBM InfoSphere Information Server 11.7.1 containers are vulnerable to privilege escalation due to an insecurely configured component. IBM X-Force ID: 158975...

8.3CVSS5.8AI score
Exploits0References2
CNVD
CNVD
added 2019/03/06 12:0 a.m.4 views

IBM InfoSphere Information Server XML External Entity Injection Vulnerability (CNVD-2019-06353)

IBM InfoSphere Information Server is a set of data integration platforms from IBM in the United States. The platform can be used to integrate data information obtained from various sources. An XML external entity injection vulnerability exists in IBM InfoSphere Information Server, which can be...

7.1CVSS6.8AI score0.0196EPSS
Exploits0References1
OSV
OSV
added 2018/06/05 3:29 p.m.2 views

CVE-2017-1350

IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 could allow a user to escalate their privileges to administrator due to improper access controls. IBM X-Force ID: 126526...

7.8CVSS5.8AI score0.00461EPSS
Exploits0References4
Rows per page
Query Builder