Websphere@7.2.0.5 Security Vulnerabilities and Issues — Websphere@7.2.0.5 CVE List

Lucene search

IbmWebsphere7.2.0.5

5 matches found

CVE•added 2017/03/07 5:59 p.m.•44 views

CVE-2016-9693

IBM Business Process Manager 7.5, 8.0, and 8.5 has a file download capability that is vulnerable to a set of attacks. Ultimately, an attacker can cause an unauthenticated victim to download a malicious payload. An existing file type restriction can be bypassed so that the payload might be considere...

6.8CVSS6.1AI score0.00178EPSS

CVE•added 2018/03/30 4:29 p.m.•42 views

CVE-2017-1756

IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 135856.

4CVSS3.4AI score0.00111EPSS

CVE•added 2015/05/30 7:59 p.m.•38 views

CVE-2015-0193

Cross-site scripting (XSS) vulnerability in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, and 8.5.x through 8.5.5.0 and WebSphere Lombardi Edition (WLE) 7.2.x through 7.2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted UR...

3.5CVSS6.8AI score0.00201EPSS

CVE•added 2015/05/25 2:59 p.m.•37 views

CVE-2015-0156

Cross-site scripting (XSS) vulnerability in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, and 8.5.x through 8.5.6.0 and WebSphere Lombardi Edition (WLE) 7.2.x through 7.2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted UR...

3.5CVSS5.2AI score0.00227EPSS

CVE•added 2015/06/28 2:59 p.m.•35 views

CVE-2015-1884

Directory traversal vulnerability in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 through 8.5.5.0 and WebSphere Lombardi Edition (WLE) 7.2 through 7.2.0.5 allows remote authenticated users to read arbitrary files via a crafted int...

4CVSS6.2AI score0.00808EPSS