Lucene search
+L

82 matches found

Positive Technologies
Positive Technologies
added 2023/12/24 12:0 a.m.9 views

PT-2023-31405 · Ibm · Ibm Financial Transaction Manager For Swift Services

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for SWIFT Services version 3.2.4 Description: The Message Entry and Repair MER facility of IBM Financial Transaction Manager for SWIFT Services assumes the sending address and the message type of FIN messages...

7.5CVSS7.5AI score0.0054EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/22 8:40 a.m.35 views

Security Bulletin: Modification of Assumed-Immutable Data (MAID) affects IBM Financial Transaction Manager for SWIFT Services (CVE-2023-49880)

Summary Modification of Assumed-Immutable Data MAID affects the MER facility of IBM Financial Transaction Manager for SWIFT Services. This vulnerability is addressed. Vulnerability Details CVEID:CVE-2023-49880 DESCRIPTION: In the Message Entry and Repair MER facility of Financial Transaction...

7.5CVSS7.4AI score0.0054EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/31 1:44 p.m.62 views

Security Bulletin: IBM Financial Transaction Manager v3.2.x is vulnerable to XML External Entity Injection (XXE)

Summary An XML External Entity Injection XXE vulnerability in Java based XML parsers within IBM Financial Transaction Manager was addressed. Vulnerability Details CVEID:CVE-2023-35892 DESCRIPTION: IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML External Entity...

9.1CVSS8AI score0.00816EPSS
Exploits0Affected Software1
OSV
OSV
added 2023/09/05 12:15 a.m.3 views

CVE-2023-35892

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 258786...

9.1CVSS5.8AI score0.00816EPSS
Exploits0References2
NVD
NVD
added 2023/09/05 12:15 a.m.25 views

CVE-2023-35892

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 258786...

9.1CVSS8.1AI score0.00816EPSS
Exploits0References2
Prion
Prion
added 2023/09/05 12:15 a.m.24 views

Xxe

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 258786...

6.4CVSS8.9AI score0.00816EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/04 11:45 p.m.17 views

CVE-2023-35892 IBM Financial Transaction Manager for SWIFT Services XML external entity injection

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 258786...

7.1CVSS6.5AI score0.00816EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/09/04 11:45 p.m.35 views

CVE-2023-35892 IBM Financial Transaction Manager for SWIFT Services XML external entity injection

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 258786...

7.1CVSS8.9AI score0.00816EPSS
Exploits0References2
CVE
CVE
added 2023/09/04 11:45 p.m.76 views

CVE-2023-35892

CVE-2023-35892 affects IBM Financial Transaction Manager for SWIFT Services 3.2.4 and is an XML External Entity Injection (XXE) vulnerability in XML processing. Multiple sources confirm the affected product/version and localized impacts: exposure of sensitive data, potential memory consumption, w...

9.1CVSS8AI score0.00816EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.5 views

IBM Financial Transaction Manager for SWIFT Services Code Issue Vulnerability

IBM Financial Transaction Manager for SWIFT Services is a financial transaction manager product from International Business Machines IBM. The product is primarily used to monitor, track and report on financial payments and transactions. A code issue vulnerability exists in IBM Financial Transacti...

9.1CVSS7.2AI score0.00816EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/01 8:26 a.m.36 views

Security Bulletin: XML External Entity Injection vulnerability affects IBM Financial Transaction Manager for SWIFT Services (CVE-2023-35892)

Summary XML External Entity Injection vulnerability affects IBM Financial Transaction Manager for SWIFT Services. This vulnerability is addressed. Vulnerability Details CVEID:CVE-2023-35892 DESCRIPTION: IBM Financial Transaction Manager for SWIFT Services is vulnerable to an XML External Entity...

9.1CVSS8AI score0.00816EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/01 12:0 a.m.8 views

PT-2023-6905 · Ibm · Ibm Financial Transaction Manager For Swift Services

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for SWIFT Services version 3.2.4 Description: The issue is related to incorrect restriction of XML links to external objects, which can be exploited by a remote attacker to expose sensitive information or...

9.1CVSS9AI score0.00816EPSS
Exploits0References8
NVD
NVD
added 2023/04/29 3:15 a.m.27 views

CVE-2022-43871

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...

5.4CVSS4.8AI score0.00371EPSS
Exploits0References2
OSV
OSV
added 2023/04/29 3:15 a.m.2 views

CVE-2022-43871

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...

5.4CVSS5.4AI score
Exploits0References2
Prion
Prion
added 2023/04/29 3:15 a.m.14 views

Cross site scripting

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...

4.9CVSS5.2AI score0.00371EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/04/29 2:42 a.m.66 views

CVE-2022-43871

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is affected by a cross-site scripting vulnerability in the Web UI. The issue allows embedding arbitrary JavaScript, potentially leading to credentials disclosure in a trusted session. Remediation per IBM Security Bulletin: install Fix Pac...

5.4CVSS4.8AI score0.00371EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/04/29 2:42 a.m.28 views

CVE-2022-43871 IBM Financial Transaction Manager for SWIFT Services cross-site scripting

IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...

4.6CVSS5.4AI score0.00371EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/04/29 12:0 a.m.4 views

IBM Financial Transaction Manager for SWIFT Services 跨站脚本漏洞

IBM Financial Transaction Manager for SWIFT Services is a financial transaction manager product from International Business Machines IBM. The product is primarily used for monitoring, tracking and reporting financial payments and transactions. A cross-site scripting vulnerability exists in IBM...

5.4CVSS5.9AI score0.00371EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/29 12:0 a.m.7 views

PT-2023-14381 · Ibm · Ibm Financial Transaction Manager For Swift Services

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for SWIFT Services version 3.2.4 Description: The issue allows users to embed arbitrary JavaScript code in the Web UI, altering the intended functionality and potentially leading to credentials disclosure...

5.4CVSS5.4AI score0.00371EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/03 10:49 a.m.27 views

Security Bulletin: Security vulnerability in IBM Financial Transaction Manager for SWIFT Service

Summary Cross-site scripting vulnerability in IBM Financial Transaction Manager for SWIFT Services Vulnerability Details CVEID:CVE-2022-43871 DESCRIPTION: IBM Financial Transaction Manager is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in...

5.4CVSS4.8AI score0.00371EPSS
Exploits0Affected Software1
Rows per page
Query Builder