Ibm

Financial Transaction Manager

46 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2018-1392

  • EPSS 0.16%
  • Published 22.02.2018 19:29:02
  • Last modified 21.11.2024 03:59:44

IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could obtain sensitive information. IBM X-Force ID: 138377.

6.5

CVE-2018-1391

  • EPSS 0.53%
  • Published 22.02.2018 19:29:02
  • Last modified 21.11.2024 03:59:44

IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could cause a denial of service. IBM X-Force ID: 138376.

7.1

CVE-2017-1758

  • EPSS 0.46%
  • Published 21.02.2018 21:29:00
  • Last modified 21.11.2024 03:22:19

IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Advanced 9.0) is vulnerable to a XML External Entity ...

8.8

CVE-2017-1606

  • EPSS 0.57%
  • Published 11.12.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Financial Transaction Manager (FTM) for Multi-Platform (MP) 3.0.0.0 through 3.0.0.7 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete infor...

6.5

CVE-2017-1538

  • EPSS 0.74%
  • Published 10.10.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Financial Transaction Manager for ACH Services for Multi-Platform 3.0.2 could allow an authenticated user to obtain sensitive information from an undocumented URL. IBM X-Force ID: 130735.

5.4

CVE-2017-1160

  • EPSS 0.23%
  • Published 17.04.2017 21:59:00
  • Last modified 20.04.2025 01:37:25

IBM Financial Transaction Manager for ACH Services for Multi-Platform 3.0.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

4.3

CVE-2017-1152

  • EPSS 0.13%
  • Published 14.04.2017 16:59:00
  • Last modified 20.04.2025 01:37:25

IBM Financial Transaction Manager 3.0.1 and 3.0.2 does not properly update the SESSIONID with each request, which could allow a user to obtain the ID in further attacks against the system. IBM X-Force ID: 122293.

5.4

CVE-2016-5920

  • EPSS 0.2%
  • Published 29.10.2016 01:59:35
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Financial Transaction Manager (FTM) for ACH Services 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to inject arbitrary web script or HTML via unspecif...

5.7

CVE-2016-3060

  • EPSS 0.16%
  • Published 29.10.2016 01:59:12
  • Last modified 12.04.2025 10:46:40

Payments Director in IBM Financial Transaction Manager (FTM) for ACH Services, Check Services, and Corporate Payment Services (CPS) 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks vi...

4.3

CVE-2016-0232

  • EPSS 0.34%
  • Published 15.02.2016 23:59:01
  • Last modified 12.04.2025 10:46:40

IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment Services (CPS) 3.0.0 before FP12 allows remote authenticated users to obtain sensitive information by reading README files.