Tivoli Application Dependency Discovery Manager@7.2.2 Security Vulnerabilities and Issues — Tivoli Application Dependency Discovery Manager@7.2.2 CVE List

Lucene search

IbmTivoli Application Dependency Discovery Manager7.2.2

9 matches found

CVE•added 2013/07/23 11:3 a.m.•213 views

CVE-2013-4002

XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlie...

7.1CVSS6.7AI score0.01422EPSS

CVE•added 2014/10/31 10:55 a.m.•43 views

CVE-2014-6150

Cross-site scripting (XSS) vulnerability in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1.0 through 7.2.1.6 and 7.2.2.0 through 7.2.2.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

3.5CVSS5.2AI score0.00188EPSS

CVE•added 2019/02/04 9:29 p.m.•36 views

CVE-2018-1675

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could expose password hashes in stored in system memory on target systems that are configured to use TADDM. IBM X-Force ID: 145110.

7.5CVSS7.2AI score0.00206EPSS

CVE•added 2014/10/31 10:55 a.m.•35 views

CVE-2014-6148

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 through 7.2.0.10, 7.2.1.0 through 7.2.1.6, and 7.2.2.0 through 7.2.2.2 does not require TADDM authentication for rptdesign downloads, which allows remote authenticated users to obtain sensitive database information via a crafted UR...

3.5CVSS5.9AI score0.00171EPSS

CVE•added 2014/10/29 10:55 a.m.•34 views

CVE-2014-6149

Directory traversal vulnerability in BIRT-viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 through 7.2.0.10, 7.2.1.0 through 7.2.1.6, and 7.2.2.0 through 7.2.2.2 allows remote authenticated users to read arbitrary files via unspecified vectors.

5CVSS6.2AI score0.00659EPSS

CVE•added 2017/04/14 4:59 p.m.•33 views

CVE-2016-8925

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could allow a remote attacker to include arbitrary files which could allow the attacker to read any file on the system. IBM X-Force ID: 118538.

6.8CVSS6.2AI score0.0021EPSS

CVE•added 2017/04/14 4:59 p.m.•33 views

CVE-2016-8927

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. ...

5.4CVSS5.4AI score0.00227EPSS

CVE•added 2018/08/15 3:29 p.m.•33 views

CVE-2018-1455

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 11029.

8.8CVSS8.4AI score0.0018EPSS

CVE•added 2017/04/14 4:59 p.m.•29 views

CVE-2016-8926

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could allow a remote attacker to read system files or data that is restricted to authorized users. IBM X-Force ID: 118539.

4.3CVSS4.8AI score0.00155EPSS