Financial Transaction Manager@3.1.0 Security Vulnerabilities and Issues — Financial Transaction Manager@3.1.0 CVE List

Lucene search

IbmFinancial Transaction Manager3.1.0

5 matches found

CVE•added 2018/02/21 9:29 p.m.•41 views

CVE-2017-1758

IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Advanced 9.0) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. ...

7.1CVSS6.8AI score0.00481EPSS

CVE•added 2018/02/22 7:29 p.m.•37 views

CVE-2018-1391

IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could cause a denial of service. IBM X-Force ID: 138376.

6.5CVSS6.5AI score0.00532EPSS

CVE•added 2020/12/21 6:15 p.m.•35 views

CVE-2020-4555

IBM Financial Transaction Manager 3.0.6 and 3.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 183328.

6.3CVSS5.1AI score0.0026EPSS

CVE•added 2019/03/05 6:29 p.m.•34 views

CVE-2019-4032

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-ForceID: 155998.

9.8CVSS9.6AI score0.00358EPSS

CVE•added 2018/02/22 7:29 p.m.•30 views

CVE-2018-1392

IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could obtain sensitive information. IBM X-Force ID: 138377.

3.5CVSS4.1AI score0.00156EPSS