Lucene search
K
IbmSecurity Network Protection Firmware

4 matches found

CVE
CVE
added 2016/01/18 2:0 a.m.80 views

CVE-2016-0201

CVE-2016-0201 involves IBM GSKit and is tied to an MD5 collision that could allow a remote attacker to obtain authentication credentials. IBM’s Security Bulletins describe affected products across GSKit-enabled IBM software (e.g., Content Manager Enterprise Edition and IBM HTTP Server, plus relat...

5.9CVSS5.7AI score0.02032EPSS
CVE
CVE
added 2015/06/28 10:0 a.m.50 views

CVE-2014-6198

IBM Security Network Protection is affected by CVE-2014-6198, a Cross‑Site Request Forgery (CSRF) flaw in 5.3 before 5.3.1 that could allow a remote attacker to hijack an authenticated user’s session by luring them to a malicious page. The issue arises from improper validation of user‑supplied in...

6.8CVSS7.2AI score0.00824EPSS
CVE
CVE
added 2013/11/13 3:0 p.m.49 views

CVE-2013-5442

CVE-2013-5442 is an XSS vulnerability affecting the Local Management Interface (LMI) of IBM Security Network Protection on XGS 5100 devices running firmware 5.1 and 5.1.1 (prior to 5.1.0.6 and 5.1.1.1, respectively). The issue allows remote attackers to inject arbitrary web script or HTML via uns...

4.3CVSS7.1AI score0.01788EPSS
CVE
CVE
added 2014/11/23 12:0 a.m.45 views

CVE-2014-6183

CVE-2014-6183 affects IBM Security Network Protection (XGS) models 3100/4100/5100/7100. A remote authenticated attacker could inject and execute arbitrary shell commands due to a shell command injection vulnerability in firmware ranges 5.1, 5.1.1, 5.1.2, 5.1.2.1, 5.2, and 5.3. Remediation consist...

4CVSS9.1AI score0.01786EPSS