Workload Scheduler Security Vulnerabilities and Issues — Workload Scheduler CVE List

Lucene search

IbmWorkload Scheduler

6 matches found

CVE•added 2022/08/10 5:15 p.m.•68 views

CVE-2022-22369

IBM Workload Scheduler 9.4 and 9.5 could allow a local user to overwrite key system files which would cause the system to crash. IBM X-Force ID: 221187.

7.1CVSS6.6AI score0.00021EPSS

CVE•added 2024/11/26 4:15 a.m.•63 views

CVE-2024-49351

IBM Workload Scheduler 9.5, 10.1, and 10.2 stores user credentials in plain text which can be read by a local user.

5.5CVSS5.3AI score0.00015EPSS

CVE•added 2020/03/10 12:15 p.m.•45 views

CVE-2019-4608

IBM Tivoli Workload Scheduler 9.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 168508.

5.4CVSS5.2AI score0.00211EPSS

CVE•added 2018/03/14 12:29 a.m.•35 views

CVE-2018-1386

IBM Tivoli Workload Automation for AIX (IBM Workload Scheduler 8.6, 9.1, 9.2, 9.3, and 9.4) contains directories with improper permissions that could allow a local user to with special access to gain root privileges. IBM X-Force ID: 138208.

7.8CVSS7.5AI score0.00026EPSS

CVE•added 2021/08/09 4:15 p.m.•33 views

CVE-2021-20349

IBM Tivoli Workload Scheduler 9.4 and 9.5 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 194599.

5.9CVSS5.5AI score0.00042EPSS

CVE•added 2020/06/11 12:15 p.m.•31 views

CVE-2020-4380

IBM Workload Scheduler 9.3.0.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 179160.

5.4CVSS5.2AI score0.00179EPSS