Lucene search
K

3131 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/25 8:41 p.m.3 views

CVE-2026-1015

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks...

5.4CVSS5.8AI score0.00207EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/25 8:40 p.m.4 views

CVE-2026-1014 IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 8:40 p.m.15 views

CVE-2026-1014

CVE-2026-1014 affects IBM InfoSphere Information Server 11.7.0.0–11.7.1.6, where sensitive information can be exposed through manipulation of JSON server responses. The underlying issue is the manipulability of JSON server responses, enabling disclosure of sensitive data (CVSS v3.1 base score 6.5...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:40 p.m.5 views

CVE-2026-1014

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:40 p.m.25 views

CVE-2026-1014 IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation...

6.5CVSS0.00214EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:39 p.m.5 views

CVE-2026-2483

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS5.4AI score0.00208EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:39 p.m.22 views

CVE-2026-2483 IBM InfoSphere Information Server Cross-Site Scripting

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS0.00208EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 8:39 p.m.10 views

CVE-2026-2483

IBM InfoSphere Information Server versions 11.7.0.0–11.7.1.6 are vulnerable to a cross-site scripting flaw in the Web UI (CVE-2026-2483), potentially allowing an attacker to inject arbitrary JavaScript and disclose credentials in a trusted session. Root cause is improper handling of input in the ...

5.4CVSS5.4AI score0.00208EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:36 p.m.25 views

CVE-2026-2484 IBM InfoSphere Information Server Information Disclosure

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is affected by an information exposure vulnerability caused by overly verbose error messages...

4.3CVSS0.00284EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:36 p.m.3 views

CVE-2026-2484

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is affected by an information exposure vulnerability caused by overly verbose error messages...

4.3CVSS5.8AI score0.00284EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/25 8:36 p.m.4 views

CVE-2026-2484 IBM InfoSphere Information Server Information Disclosure

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is affected by an information exposure vulnerability caused by overly verbose error messages...

4.3CVSS5.8AI score0.00284EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:26 p.m.2 views

CVE-2025-36422

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 IBM InfoSphere DataStage Flow Designer is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

4.3CVSS5.7AI score0.00139EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:26 p.m.21 views

CVE-2025-36422 IBM InfoSphere Information Server is vulnerable to cross-site request forgery

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 IBM InfoSphere DataStage Flow Designer is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

4.3CVSS0.00139EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 8:26 p.m.8 views

CVE-2025-36422

IBM InfoSphere Information Server (11.7.0.0–11.7.1.6), specifically DataStage Flow Designer, is affected by CVE-2025-36422: Cross-Site Request Forgery that could allow an attacker to perform malicious actions via a trusted user session. The vulnerability has a CVSS v3.1 base score of 4.3 (Medium)...

4.3CVSS5.7AI score0.00139EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:25 p.m.26 views

CVE-2025-36258 IBM InfoSphere Information Server is vulnerable due to plaintext storage of a password

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 product stores user credentials and other sensitive information in plain text which can be read by a local user...

7.1CVSS0.00155EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:25 p.m.4 views

CVE-2025-36258

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 product stores user credentials and other sensitive information in plain text which can be read by a local user...

7.1CVSS5.8AI score0.00155EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/25 8:25 p.m.5 views

CVE-2025-36258 IBM InfoSphere Information Server is vulnerable due to plaintext storage of a password

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 product stores user credentials and other sensitive information in plain text which can be read by a local user...

7.1CVSS5.8AI score0.00155EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 8:25 p.m.17 views

CVE-2025-36258

CVE-2025-36258 affects IBM InfoSphere Information Server 11.7.0.0–11.7.1.6. The root cause is plaintext storage of user credentials and other sensitive information, allowing a local user to read them. IBM’s security bulletin notes a CVSSv3.1 base score of 7.1 (vector: AV:L/AC:L/PR:N/UI:N/S:C/C:H/...

7.1CVSS5.8AI score0.00155EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:22 p.m.3 views

CVE-2026-2485

IBM Infosphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

4.8CVSS5.5AI score0.00187EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:22 p.m.22 views

CVE-2026-2485 IBM InfoSphere Information Server Cross-Site Scripting

IBM Infosphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

4.8CVSS0.00187EPSS
Exploits0References1
Rows per page
Query Builder