Lucene search
K

1071 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/13 6:33 p.m.2 views

CVE-2025-13702

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to...

6.1CVSS5.5AI score0.00212EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/13 6:33 p.m.3 views

CVE-2025-13702 IBM Sterling Partner Engagement Manager Cross-Site Scripting

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to...

6.1CVSS5.5AI score0.00212EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 6:33 p.m.13 views

CVE-2025-13702

CVE-2025-13702 affects IBM Sterling Partner Engagement Manager, versions 6.2.3.0–6.2.3.5 and 6.2.4.0–6.2.4.2. The issue is a cross-site scripting (XSS) vulnerability that allows an authenticated user to embed arbitrary JavaScript in the Web UI, potentially altering functionality and leading to cr...

6.1CVSS6.8AI score0.00212EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/13 6:33 p.m.3 views

CVE-2025-13718 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information in cleartext in a communication channel that can be sniffed by unauthorized actors...

3.7CVSS5.8AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 6:33 p.m.24 views

CVE-2025-13718 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information in cleartext in a communication channel that can be sniffed by unauthorized actors...

3.7CVSS0.00183EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 6:33 p.m.3 views

CVE-2025-13718

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information in cleartext in a communication channel that can be sniffed by unauthorized actors...

3.7CVSS5.8AI score0.00183EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/13 6:33 p.m.11 views

CVE-2025-13718

IBM Sterling Partner Engagement Manager versions 6.2.3.0–6.2.3.5 and 6.2.4.0–6.2.4.2 are affected by an information disclosure vulnerability that could allow a remote attacker to obtain sensitive data in cleartext over a network channel that can be sniffed. The root cause and exact technical deta...

7.5CVSS7.1AI score0.00183EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/13 6:32 p.m.4 views

CVE-2025-13723

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow an attacker to obtain sensitive user information using an expired access token...

5.3CVSS5.8AI score0.00166EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/13 6:32 p.m.6 views

CVE-2025-13723 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow an attacker to obtain sensitive user information using an expired access token...

5.3CVSS5.8AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 6:32 p.m.27 views

CVE-2025-13723 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow an attacker to obtain sensitive user information using an expired access token...

5.3CVSS0.00166EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 6:32 p.m.10 views

CVE-2025-13723

IBM Sterling Partner Engagement Manager (Essentials and Standard Editions) versions 6.2.3.0–6.2.3.5 and 6.2.4.0–6.2.4.2 are affected by a vulnerability that could allow an attacker to obtain sensitive user information via expired access tokens. Root cause described in Red Hat and NVD records is a...

7.5CVSS7.1AI score0.00166EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/13 6:26 p.m.25 views

CVE-2025-13726 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information when detailed technical error messages are returned. This information could be used in further attacks against the system...

5.3CVSS0.00327EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/13 6:26 p.m.4 views

CVE-2025-13726 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information when detailed technical error messages are returned. This information could be used in further attacks against the system...

5.3CVSS5.8AI score0.00327EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 6:26 p.m.3 views

CVE-2025-13726

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow a remote attacker to obtain sensitive information when detailed technical error messages are returned. This information could be used in further attacks against the system...

5.3CVSS5.8AI score0.00327EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/13 6:26 p.m.15 views

CVE-2025-13726

IBM Sterling Partner Engagement Manager versions 6.2.3.0–6.2.3.5 and 6.2.4.0–6.2.4.2 are affected by an information disclosure vulnerability where detailed technical error messages may reveal sensitive data to a remote attacker. The provided documents consistently describe the impact as informati...

7.5CVSS7.1AI score0.00327EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/13 6:22 p.m.5 views

CVE-2025-14811 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques...

3.1CVSS5.8AI score0.00205EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/13 6:22 p.m.3 views

CVE-2025-14811

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques...

3.1CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/13 6:22 p.m.29 views

CVE-2025-14811 IBM Sterling Partner Engagement Manager Information Disclosure

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques...

3.1CVSS0.00205EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 6:22 p.m.14 views

CVE-2025-14811

IBM Sterling Partner Engagement Manager (Essentials: 6.2.3.0–6.2.3.5; 6.2.4.0–6.2.4.2; Standard: 6.2.3.0–6.2.3.5; 6.2.4.0–6.2.4.2) contains an information disclosure vulnerability. An attacker could obtain sensitive information from the query string of HTTP GET requests, potentially leveraging ma...

5.9CVSS7.1AI score0.00205EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.9 views

PT-2026-25345

IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 through 6.2.4.2 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to...

6.1CVSS5.5AI score0.00212EPSS
Exploits0References2
Rows per page
Query Builder