Application Gateway Security Vulnerabilities and Issues — Application Gateway CVE List

Lucene search

IbmApplication Gateway

4 matches found

CVE•added 2022/09/28 4:15 p.m.•51 views

CVE-2022-22387

IBM Application Gateway is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 221965.

5.4CVSS5.2AI score0.00105EPSS

CVE•added 2021/06/01 2:15 p.m.•38 views

CVE-2021-20576

IBM Security Verify Access 20.07 could allow a remote attacker to send a specially crafted HTTP GET request that could cause the application to crash.

7.5CVSS7.3AI score0.0101EPSS

CVE•added 2025/06/03 3:15 p.m.•35 views

CVE-2024-45655

IBM Application Gateway 19.12 through 24.09 could allow a local privileged user to perform unauthorized actions due to incorrect permissions assignment.

5.5CVSS5.3AI score0.00011EPSS

CVE•added 2021/06/01 2:15 p.m.•34 views

CVE-2021-20575

IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by another user on the system. X-Force ID: 199278.

4CVSS4.2AI score0.00042EPSS