Ibm

Financial Transaction Manager

46 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2018-1392

  • EPSS 0.16%
  • Veröffentlicht 22.02.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:59:44

IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could obtain sensitive information. IBM X-Force ID: 138377.

6.5

CVE-2018-1391

  • EPSS 0.53%
  • Veröffentlicht 22.02.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:59:44

IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could cause a denial of service. IBM X-Force ID: 138376.

7.1

CVE-2017-1758

  • EPSS 0.46%
  • Veröffentlicht 21.02.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:22:19

IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Advanced 9.0) is vulnerable to a XML External Entity ...

8.8

CVE-2017-1606

  • EPSS 0.57%
  • Veröffentlicht 11.12.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) 3.0.0.0 through 3.0.0.7 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete infor...

6.5

CVE-2017-1538

  • EPSS 0.74%
  • Veröffentlicht 10.10.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Financial Transaction Manager for ACH Services for Multi-Platform 3.0.2 could allow an authenticated user to obtain sensitive information from an undocumented URL. IBM X-Force ID: 130735.

5.4

CVE-2017-1160

  • EPSS 0.23%
  • Veröffentlicht 17.04.2017 21:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Financial Transaction Manager for ACH Services for Multi-Platform 3.0.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

4.3

CVE-2017-1152

  • EPSS 0.13%
  • Veröffentlicht 14.04.2017 16:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Financial Transaction Manager 3.0.1 and 3.0.2 does not properly update the SESSIONID with each request, which could allow a user to obtain the ID in further attacks against the system. IBM X-Force ID: 122293.

5.4

CVE-2016-5920

  • EPSS 0.2%
  • Veröffentlicht 29.10.2016 01:59:35
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Financial Transaction Manager (FTM) for ACH Services 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to inject arbitrary web script or HTML via unspecif...

5.7

CVE-2016-3060

  • EPSS 0.16%
  • Veröffentlicht 29.10.2016 01:59:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Payments Director in IBM Financial Transaction Manager (FTM) for ACH Services, Check Services, and Corporate Payment Services (CPS) 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks vi...

4.3

CVE-2016-0232

  • EPSS 0.34%
  • Veröffentlicht 15.02.2016 23:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment Services (CPS) 3.0.0 before FP12 allows remote authenticated users to obtain sensitive information by reading README files.