Datapower Gateway@2018.4.1.0 Security Vulnerabilities and Issues — Datapower Gateway@2018.4.1.0 CVE List

Lucene search

IbmDatapower Gateway2018.4.1.0

6 matches found

CVE•added 2020/03/19 2:15 p.m.•48 views

CVE-2020-4205

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could allow an authenticated user to bypass security restrictions, and continue to access the server even after authentication certificates have been revolked. IBM X-Force ID: 174961.

6.5CVSS6.3AI score0.00084EPSS

CVE•added 2020/10/06 4:15 p.m.•47 views

CVE-2020-4528

IBM MQ Appliance (IBM DataPower Gateway 10.0.0.0 and 2018.4.1.0 through 2018.4.1.12) could allow a local user, under special conditions, to obtain highly sensitive information from log files. IBM X-Force ID: 182658.

5.9CVSS5AI score0.00046EPSS

CVE•added 2020/03/19 2:15 p.m.•46 views

CVE-2020-4203

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could potentially disclose highly sensitive information to a privileged user due to improper access controls. IBM X-Force ID: 174956.

4.9CVSS4.8AI score0.00266EPSS

CVE•added 2020/09/21 3:15 p.m.•40 views

CVE-2020-4581

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a chunked transfer-encoding HTTP/2 request. IBM X-Force ID: 184441.

7.5CVSS7.3AI score0.00729EPSS

CVE•added 2020/09/21 3:15 p.m.•37 views

CVE-2020-4579

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a specially crafted HTTP/2 request with invalid characters. IBM X-Force ID: 184438.

7.5CVSS7.3AI score0.01612EPSS

CVE•added 2020/09/21 3:15 p.m.•33 views

CVE-2020-4580

IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a specially crafted a JSON request with invalid characters. IBM X-Force ID: 184439.

7.5CVSS7.3AI score0.00729EPSS