Spss Statistics Security Vulnerabilities and Issues — Spss Statistics CVE List

Lucene search

IbmSpss Statistics

6 matches found

CVE•added 2025/03/25 7:15 p.m.•80 views

CVE-2024-31896

IBM SPSS Statistics 26.0, 27.0.1, 28.0.1, and 29.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

5.9CVSS6.8AI score0.00018EPSS

CVE•added 2024/03/08 6:15 p.m.•58 views

CVE-2022-43855

IBM SPSS Statistics 26.0, 27.0.1, and 28.0 IO Module could allow a local user to create multiple files that could exhaust the file handles capacity and cause a denial of service.

6.2CVSS6.1AI score0.00017EPSS

CVE•added 2021/11/17 2:15 p.m.•29 views

CVE-2021-38959

IBM SPSS Statistics for Windows 24.0, 25.0, 26.0, 27.0, 27.0.1, and 28.0 could allow a local user to cause a denial of service by writing arbitrary files to admin protected directories on the system. IBM X-Force ID: 212046.

6.2CVSS5.5AI score0.00038EPSS

CVE•added 2016/01/01 12:59 a.m.•27 views

CVE-2015-7489

IBM SPSS Statistics 22.0.0.2 before IF10 and 23.0.0.2 before IF7 uses weak permissions (Everyone: Write) for Python scripts, which allows local users to gain privileges by modifying a script.

7.8CVSS7.5AI score0.00031EPSS

CVE•added 2016/05/14 3:59 p.m.•27 views

CVE-2015-8530

Stack-based buffer overflow in the Initialize function in an ActiveX control in IBM SPSS Statistics 19 and 20 before 20.0.0.2-IF0008, 21 before 21.0.0.2-IF0010, 22 before 22.0.0.2-IF0011, 23 before 23.0.0.3-IF0001, and 24 before 24.0.0.0-IF0003 allows remote authenticated users to execute arbitrary...

6.5CVSS6.8AI score0.01266EPSS

CVE•added 2015/05/25 2:59 p.m.•26 views

CVE-2015-0140

An unspecified ActiveX control in IBM SPSS Statistics 22.0 through FP1 on 32-bit platforms allows remote attackers to execute arbitrary code via a crafted HTML document.

6.8CVSS7.5AI score0.01827EPSS