Lucene search
K

696 matches found

Cvelist
Cvelist
added 2025/01/31 4:14 p.m.12 views

CVE-2024-49349 IBM Financial Transaction Manager cross-site scripting

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...

6.1CVSS0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/31 4:14 p.m.7 views

CVE-2024-49349 IBM Financial Transaction Manager cross-site scripting

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...

6.1CVSS5.9AI score0.00217EPSS
Exploits0References1
CVE
CVE
added 2025/01/31 4:14 p.m.60 views

CVE-2024-49349

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0–3.2.4.1 is vulnerable to stored cross-site scripting (CVE-2024-49349). The vulnerability allows authenticated users to inject arbitrary JavaScript into the Web UI, potentially altering functionality and leading to cre...

6.1CVSS5.9AI score0.00217EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/31 4:13 p.m.8 views

CVE-2024-49339 IBM Financial Transaction Manager cross-site scripting

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...

6.4CVSS5.9AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/31 4:13 p.m.12 views

CVE-2024-49339 IBM Financial Transaction Manager cross-site scripting

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...

6.4CVSS0.00215EPSS
Exploits0References1
CVE
CVE
added 2025/01/31 4:13 p.m.59 views

CVE-2024-49339

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0–3.2.4.13 is affected by CVE-2024-49339, a stored cross-site scripting vulnerability in the Web UI allowing authenticated users to inject JavaScript and potentially disclose credentials. IBM's remediation is to upgrade...

6.4CVSS5.9AI score0.00215EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/31 2:15 p.m.9 views

Security Bulletin: IBM Financial Transaction Manager for SWIFT Services for Multiplatforms is vulnerable to cross-site scripting.

Summary IBM Financial Transaction Manager for SWIFT Services for Multiplatforms is vulnerable to cross-site scripting CVE-2024-49349. Vulnerability Details CVEID:CVE-2024-49349 DESCRIPTION: IBM Financial Transaction Manager for SWIFT Services is vulnerable to cross-site scripting. This...

6.1CVSS6AI score0.00217EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/31 2:8 p.m.8 views

Security Bulletin: Cross-site scripting vulnerability in IBM Financial Transaction Manager for SWIFT Services

Summary Cross-site scripting vulnerability in IBM Financial Transaction Manager for SWIFT Services Vulnerability Details CVEID:CVE-2024-49339 DESCRIPTION: IBM Financial Transaction Manager is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitra...

6.4CVSS5.9AI score0.00215EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/31 12:0 a.m.7 views

PT-2025-2828 · Ibm · Ibm Financial Transaction Manager For Swift Services

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for SWIFT Services for Multiplatforms versions 3.2.4.0 through 3.2.4.1 Description: The issue allows authenticated users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended...

6.4CVSS6.3AI score0.00215EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/31 12:0 a.m.5 views

PT-2025-2829 · Ibm · Ibm Financial Transaction Manager For Swift Services

Name of the Vulnerable Software and Affected Versions: IBM Financial Transaction Manager for SWIFT Services for Multiplatforms versions 3.2.4.0 through 3.2.4.1 Description: The issue allows authenticated users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended...

6.1CVSS6.3AI score0.00217EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.5 views

IBM Financial Transaction Manager 跨站脚本漏洞

IBM Financial Transaction Manager is a financial transaction manager from International Business Machines IBM. The product is primarily used to monitor, track and report on financial payments and transactions. A cross-site scripting vulnerability exists in IBM Financial Transaction Manager that...

6.4CVSS5.8AI score0.00215EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.5 views

IBM Financial Transaction Manager 跨站脚本漏洞

IBM Financial Transaction Manager is a financial transaction manager from International Business Machines IBM. The product is primarily used to monitor, track and report on financial payments and transactions. IBM Financial Transaction Manager suffers from a cross-site scripting vulnerability tha...

6.1CVSS6AI score0.00217EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.18 views

Security Bulletin: Financial Transaction Manager v4 is impacted by a denial of service(DoS) vulnerability in WebSphere Liberty (CVE-2024-25026)

Summary IBM WebSphere Application Server Liberty is bundled with Financial Transaction Manager. Vulnerability Details CVEID:CVE-2024-25026 DESCRIPTION: IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.4 are vulnerable to a denial of...

7.5CVSS6.5AI score0.00792EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/27 5:0 p.m.43 views

Security Bulletin: Financial Transaction Manager v4 is impacted by multiple vulnerabilities in IBM Java SE

Summary Multiple vulnerabilities were addressed in Financial Transaction Manager v4.0.6.0 iFix4 Vulnerability Details CVEID:CVE-2024-21147 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentiality, high integrity...

7.5CVSS6.3AI score0.01361EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/27 4:29 p.m.27 views

Security Bulletin: Financial Transaction Manager v4 is impacted by multiple vulnerabilities in WebSphere Liberty

Summary Multiple vulnerabilities were addressed in Financial Transaction Manager 4.0.6.0 iFix4 Vulnerability Details CVEID:CVE-2024-22354 DESCRIPTION: IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.5 are vulnerable to an XML External...

7.5CVSS7.4AI score0.01278EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/22 1:25 p.m.16 views

Security Bulletin: Financial Transaction Manager for Digital Payments is impacted by an information disclosure vulnerability in WebSphere Application Server Liberty

Summary An information disclosure vulnerability has been addressed in Financial Transaction Manager 3.2.13 for Digital Payments, Corporate Payment Services and High Value Payments. Vulnerability Details CVEID:CVE-2023-50314 DESCRIPTION: IBM WebSphere Application Server Liberty 17.0.0.3 through...

7.5CVSS5.9AI score0.00254EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/22 1:16 p.m.29 views

Security Bulletin: Financial Transaction Manager for Digital Payments is impacted by multiple vulnerabilities in IBM Java SE

Summary Multiple vulnerabilities were addressed in Financial Transaction Manager 3.2.13 for Digital Payments, Corporate Payment Services and High Value Payments. Vulnerability Details CVEID:CVE-2024-21147 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow...

7.4CVSS7.1AI score0.01257EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/07 4:15 p.m.27 views

Security Bulletin: IBM Financial Transaction Manager is vulnerable to an XML External Entity Injection (XXE) attack

Summary IBM Financial Transaction Manager for ACH and Check Service v3.0.5.4 and v3.0.5.5 has addressed an XML External Entity Injection vulnerability. Vulnerability Details CVEID:CVE-2023-35892 DESCRIPTION: IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to an XML Extern...

9.1CVSS8.1AI score0.00816EPSS
Exploits0Affected Software1
NVD
NVD
added 2023/12/25 3:15 a.m.34 views

CVE-2023-49880

In the Message Entry and Repair MER facility of IBM Financial Transaction Manager for SWIFT Services 3.2.4 the sending address and the message type of FIN messages are assumed to be immutable. However, an attacker might modify these elements of a business transaction. IBM X-Force ID: 273183...

7.5CVSS0.0054EPSS
Exploits0References2
Prion
Prion
added 2023/12/25 3:15 a.m.20 views

Code injection

In the Message Entry and Repair MER facility of IBM Financial Transaction Manager for SWIFT Services 3.2.4 the sending address and the message type of FIN messages are assumed to be immutable. However, an attacker might modify these elements of a business transaction. IBM X-Force ID: 273183...

5CVSS6.6AI score0.0054EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder