13 matches found
EUVD-2020-25879
Malware in sbrugna...
Security Bulletin: IBM InfoSphere Metadata Asset Manager is vulnerable to stored cross-site scripting.
Summary A stored cross-site scripting vulnerability in IBM InfoSphere Metadata Asset Manager was addressed. Vulnerability Details CVEID: CVE-2020-4741 DESCRIPTION: IBM InfoSphere Information Server is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary...
Security Bulletin: IBM InfoSphere Metadata Asset Manager is vulnerable to stored cross-site scripting and server-side request forgery.
Summary Stored cross-site scripting and server-side request forgery vulnerabilities in IBM InfoSphere Metadata Asset Manager was addressed. Vulnerability Details CVEID: CVE-2020-4702 DESCRIPTION: IBM InfoSphere Information Server is vulnerable to stored cross-site scripting. This vulnerability...
IBM InfoSphere Metadata Asset Manager Server-Side Request Forgery Vulnerability
IBM InfoSphere Metadata Asset Manager imports, exports, and manages common metadata assets. A server-side request forgery vulnerability exists in IBM InfoSphere Metadata Asset Manager 11.7, which can be exploited by a remote authenticated attacker to submit or control server requests by sending...
CVE-2020-4632
IBM InfoSphere Metadata Asset Manager 11.7 is vulnerable to server-side request forgery. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to submit or control server requests. IBM X-Force ID: 185416...
CVE-2020-4632
IBM InfoSphere Metadata Asset Manager 11.7 is vulnerable to server-side request forgery. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to submit or control server requests. IBM X-Force ID: 185416...
Server side request forgery (ssrf)
IBM InfoSphere Metadata Asset Manager 11.7 is vulnerable to server-side request forgery. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to submit or control server requests. IBM X-Force ID: 185416...
CVE-2020-4632
IBM InfoSphere Metadata Asset Manager 11.7 is vulnerable to server-side request forgery. By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to submit or control server requests. IBM X-Force ID: 185416...
Security Bulletin: IBM InfoSphere Metadata Asset Manager is affected by a Stored cross site scripting vulnerability
Summary A Stored cross site scripting vulnerability was addressed by IBM InfoSphere Metadata Asset Manager. Vulnerability Details CVEID: CVE-2019-4618 DESCRIPTION: IBM InfoSphere Information Server is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip...
Security Bulletin: IBM InfoSphere Metadata Asset Manager is affected by an SQL Injection vulnerability
Summary An SQL Injection vulnerability was addressed by IBM InfoSphere Metadata Asset Manager. Vulnerability Details CVEID: CVE-2018-1994 DESCRIPTION: IBM InfoSphere Information Server is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow...
IBM InfoSphere Metadata Asset Manager and InfoSphere Information Server on Cloud SQL Injection Vulnerability
IBM InfoSphere Information Server is a set of data integration platforms from IBM in the United States. The platform can be used to integrate data information obtained from various sources. A SQL injection vulnerability exists in IBM InfoSphere Metadata Asset Manager and InfoSphere Information...
Security Bulletin: Multiple IBM InfoSphere Information Server components are affected by a vulnerability in IBM Dojo Toolkit (CVE-2014-8917)
Summary Multiple components of IBM InfoSphere Information Server may be affected by an XSS vulnerability in IBM Dojo Toolkit. Vulnerability Details CVE-ID: CVE-2014-8917 DESCRIPTION: IBM Dojo Toolkit is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A...
Security Bulletin: IBM InfoSphere Metadata Asset Manager is subject to a denial of service vulnerability from its use of Apache Tomcat (CVE-2014-0095)
Summary Apache Tomcat is vulnerable to a denial of service caused by the improper handling of an AJP request. A remote attacker could exploit this vulnerability to consume a request processing thread and cause a denial of service. Vulnerability Details CVE ID: CVE-2014-0095 CVSS: CVSS Base Score:...