Tivoli Workload Scheduler@9.4 Security Vulnerabilities and Issues — Tivoli Workload Scheduler@9.4 CVE List

Lucene search

IbmTivoli Workload Scheduler9.4

5 matches found

CVE•added 2023/02/03 12:15 a.m.•61 views

CVE-2022-38389

IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 233975.

9.1CVSS8.1AI score0.00022EPSS

CVE•added 2023/02/03 12:15 a.m.•52 views

CVE-2022-22486

10CVSS9AI score0.00021EPSS

CVE•added 2019/10/16 1:15 p.m.•36 views

CVE-2019-4031

IBM Workload Scheduler Distributed 9.2, 9.3, 9.4, and 9.5 contains a vulnerability that could allow a local user to write files as root in the file system, which could allow the attacker to gain root privileges. IBM X-Force ID: 155997.

8.4CVSS7.4AI score0.0011EPSS

CVE•added 2018/03/14 12:29 a.m.•35 views

CVE-2018-1386

IBM Tivoli Workload Automation for AIX (IBM Workload Scheduler 8.6, 9.1, 9.2, 9.3, and 9.4) contains directories with improper permissions that could allow a local user to with special access to gain root privileges. IBM X-Force ID: 138208.

7.8CVSS7.5AI score0.00026EPSS

CVE•added 2021/08/09 4:15 p.m.•33 views

CVE-2021-20349

IBM Tivoli Workload Scheduler 9.4 and 9.5 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 194599.

5.9CVSS5.5AI score0.00042EPSS