I@7.2 Security Vulnerabilities and Issues — I@7.2 CVE List

Lucene search

IbmI7.2

3 matches found

CVE•added 2022/05/09 5:15 p.m.•67 views

CVE-2022-22481

IBM Navigator for i 7.2, 7.3, and 7.4 (heritage version) could allow a remote attacker to obtain access to the web interface without valid credentials. By modifying the sign on request, an attacker can gain visibility to the fully qualified domain name of the target system and the navigator tasks p...

5.3CVSS5.2AI score0.00172EPSS

CVE•added 2022/07/13 5:15 p.m.•58 views

CVE-2022-34358

IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 230516.

5.4CVSS5.2AI score0.00123EPSS

CVE•added 2022/01/13 6:15 p.m.•40 views

CVE-2021-39056

The IBM i 7.1, 7.2, 7.3, and 7.4 Extended Dynamic Remote SQL server (EDRSQL) could allow a remote authenticated user to send a specially crafted request and cause a denial of service. IBM X-Force ID: 214537.

6.5CVSS6.5AI score0.00278EPSS