Security Bulletin: IBM Financial Transaction Manager for SWIFT Services for Multiplatforms is vulnerable to cross-site scripting.

Summary IBM Financial Transaction Manager for SWIFT Services for Multiplatforms is vulnerable to cross-site scripting CVE-2025-36148. Vulnerability Details CVEID:CVE-2025-36148 DESCRIPTION: IBM Financial Transaction Manager SWIFT is vulnerable to cross-site scripting. This vulnerability allows an...

Security Bulletin: A vulnerability exists in Google Web Toolkit (GWT) framework used by ITNM (CVE-2007-2378)

Summary Vulnerability CVE-2007-2378 found in gwt-maps that is present in IBM Tivoli Network Manager ITNM IP Edition. The fix contains the removal of this library from ITNM Vulnerability Details CVEID:CVE-2007-2378 DESCRIPTION: The Google Web Toolkit GWT framework exchanges data using JavaScript...

Security Bulletin: Vulnerabilities found within Java collectors used by IBM Tivoli Network Manager (ITNM) IP Edition.

Summary Vulnerabilities found within Java collectors CVE-2016-5725, CVE-2022-2048, CVE-2022-2047 used by IBM Tivoli Network Manager ITNM IP Edition. Vulnerability Details CVEID:CVE-2016-5725 DESCRIPTION: JSch could allow a remote attacker to traverse directories on the system. An attacker could...

Security Bulletin: Due to use of Expat library, IBM Tivoli Network Manager (ITNM) is vulnerable to arbitrary code execution [CVE-2022-40674]

Summary Vulnerabilities found within libExpat CVE-2022-40674 that is used by IBM Tivoli Network Manager ITNM IP Edition. The fix contains the updated libExpat that resolves the vulnerability. Vulnerability Details CVEID:CVE-2022-40674 DESCRIPTION: libexpat could allow a remote attacker to execute...

Security Bulletin: Due to use of Oracle JDBC component, ITNM is vulnerable to an unspecified vulnerability (CVE-2016-3506)

Summary IBM Tivoli Network Manager ITNM IP Edition uses the JDBC component of Oracle Database Server for connecting to supported Oracle databases when the product is deployed to use Oracle as a data store. An unspecified vulnerability has been reported in the Oracle JDBC component CVE-2016-3506...

Security Bulletin: IBM Tivoli Netcool Impact Session Management - Session Fixation

Summary IBM Tivoli Netcool Impact did not implement proper Session Management. The attacker can fix the users session and lure the victim to login with the Arbitrary session he created, further results into Session hijacking. Vulnerability Details CVEID: Not Applicable DESCRIPTION: No CVE...

Security Bulletin: IBM Tivoli Netcool Impact Remote Code Execution (CVE-2019-4103)

Summary IBM Tivoli Netcool Impact allows for remote execution of command by low privileged User. Remote code execution allow to execute arbitrary code on system which lead to take control over the system. Vulnerability Details CVEID: CVE-2019-4103 DESCRIPTION: IBM Tivoli Netcool allows for remote...

Security Bulletin: Multiple security vulnerabilities in IBM SDK, Java™ Technology Edition affect IBM SmartCloud Provisioning (CVE-2014-0878, CVE-2014-0460, CVE-2014-0453).

Summary Multiple security vulnerabilities exist in IBM SDK, Java Technology Edition and affect IBM SmartCloud Provisioning CVE-2014-0878, CVE-2014-0460, CVE-2014-0453 . IBM SDK, Java Technology Edition has released patch updates with security vulnerabilities fixes. IBM SDK, Java Technology Editio...