Flex System Manager Security Vulnerabilities and Issues — Flex System Manager CVE List

Lucene search

IbmFlex System Manager

5 matches found

CVE•added 2014/08/29 10:0 a.m.•36 views

CVE-2014-0897

The Configuration Patterns component in IBM Flex System Manager (FSM) 1.2.0.x, 1.2.1.x, 1.3.0.x, and 1.3.1.x uses a weak algorithm in an encryption step during Chassis Management Module (CMM) account creation, which makes it easier for remote authenticated users to defeat cryptographic protection m...

3.5CVSS6.1AI score0.00093EPSS

CVE•added 2013/10/25 8:55 p.m.•34 views

CVE-2013-5424

IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass intended access restrictions, and create new user accounts or execute tasks, by leveraging an expired password for the system-level account.

6.8CVSS7.2AI score0.00254EPSS

CVE•added 2013/12/14 10:55 p.m.•34 views

CVE-2013-5438

Cross-site scripting (XSS) vulnerability in the web server in IBM Flex System Manager (FSM) 1.1.0 through 1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.0035EPSS

CVE•added 2014/07/07 11:1 a.m.•32 views

CVE-2013-5423

IBM Flex System Manager (FSM) 1.1 through 1.3 before 1.3.2.0 allows remote attackers to enumerate user accounts via unspecified vectors.

5CVSS7.3AI score0.00321EPSS

CVE•added 2015/02/19 2:59 a.m.•27 views

CVE-2014-6147

IBM Flex System Manager (FSM) 1.1.x.x, 1.2.0.x, 1.2.1.x, 1.3.0.0, 1.3.1.0, and 1.3.2.0 allows local users to obtain sensitive information, and consequently gain privileges or conduct impersonation attacks, via unspecified vectors.

2.1CVSS6.3AI score0.00127EPSS