Infosphere Information Server Security Vulnerabilities and Issues — Infosphere Information Server CVE List

Lucene search

IbmInfosphere Information Server

4 matches found

CVE•added 2014/03/16 2:6 p.m.•45 views

CVE-2013-4058

Multiple SQL injection vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote authenticated users to execute arbitrary SQL commands via unspecified interfaces.

6.5CVSS8.1AI score0.00501EPSS

CVE•added 2014/03/16 2:6 p.m.•39 views

CVE-2013-4057

Cross-site request forgery (CSRF) vulnerability in the XML Pack in IBM InfoSphere Information Server 8.5.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allows remote attackers to hijack the authentication of arbitrary users.

6.8CVSS7.2AI score0.00211EPSS

CVE•added 2014/03/16 2:6 p.m.•36 views

CVE-2013-4059

Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified interfaces.

4.3CVSS5.7AI score0.00427EPSS

CVE•added 2014/07/26 11:11 a.m.•34 views

CVE-2014-3071

Cross-site scripting (XSS) vulnerability in the Data Quality Console in IBM InfoSphere Information Server 11.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL for adding a project connection.

4.3CVSS5.7AI score0.00321EPSS