Financial Transaction Manager@3.2.4 Security Vulnerabilities and Issues — Financial Transaction Manager@3.2.4 CVE List

Lucene search

IbmFinancial Transaction Manager3.2.4

4 matches found

CVE•added 2022/12/20 7:15 p.m.•60 views

CVE-2022-43872

IBM Financial Transaction Manager 3.2.4 authorization checks are done incorrectly for some HTTP requests which allows getting unauthorized technical information (e.g. event log entries) about the FTM SWIFT system. IBM X-Force ID: 239708.

5.3CVSS5.1AI score0.00066EPSS

CVE•added 2022/12/20 7:15 p.m.•48 views

CVE-2022-43875

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow an authenticated user to lock additional RM authorizations, resulting in a denial of service on displaying or managing these authorizations. IBM X-Force ID: 240034.

6.2CVSS5.5AI score0.0002EPSS

CVE•added 2022/02/02 12:15 p.m.•39 views

CVE-2021-39044

IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 214210.

8.8CVSS8.4AI score0.00109EPSS

CVE•added 2022/02/02 12:15 p.m.•38 views

CVE-2021-39066

IBM Financial Transaction Manager 3.2.4 does not invalidate session any existing session identifier gives an attacker the opportunity to steal authenticated sessions. IBM X-Force ID: 215040.

8.8CVSS8.2AI score0.00179EPSS