Websphere Datapower Xc10 Appliance@2.0.0.0 Security Vulnerabilities and Issues — Websphere Datapower Xc10 Appliance@2.0.0.0 CVE List

Lucene search

IbmWebsphere Datapower Xc10 Appliance2.0.0.0

3 matches found

CVE•added 2012/11/23 12:9 p.m.•50 views

CVE-2012-5756

The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2, when a collective configuration is enabled, has a single secret key that is shared across different customers' installations, which allows remote attackers to spoof a container server by (1) sniffing the...

4.3CVSS6.7AI score0.00463EPSS

CVE•added 2012/11/23 12:9 p.m.•32 views

CVE-2012-5759

The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2 allows remote authenticated users to bypass intended administrative-role requirements and perform arbitrary JMX operations via unspecified vectors.

9CVSS6.3AI score0.00776EPSS

CVE•added 2012/11/23 12:9 p.m.•31 views

CVE-2012-5758

The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and 2.1.0.0 through 2.1.0.2 does not require authentication for an unspecified interface, which allows remote attackers to cause a denial of service (process exit) via unknown vectors.

7.8CVSS6.9AI score0.03043EPSS