Ibm

Filenet Content Manager

20 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-47716

  • EPSS 0.02%
  • Published 01.03.2024 03:15:06
  • Last modified 15.08.2025 20:06:50

IBM CP4BA - Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a user to gain the privileges of another user under unusual circumstances. IBM X-Force ID: 271656.

5.3

CVE-2023-38366

  • EPSS 0.05%
  • Published 01.03.2024 03:15:06
  • Last modified 23.04.2025 19:47:02

IBM Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary ...

5.4

CVE-2023-35905

  • EPSS 0.14%
  • Published 04.10.2023 01:15:50
  • Last modified 21.11.2024 08:08:57

IBM FileNet Content Manager 5.5.8, 5.5.10, and 5.5.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials ...

9

CVE-2021-38965

  • EPSS 2.31%
  • Published 17.01.2022 18:15:07
  • Last modified 21.11.2024 06:18:18

IBM FileNet Content Manager 5.5.4, 5.5.6, and 5.5.7 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 212346.

9.3

CVE-2020-4759

  • EPSS 0.42%
  • Published 09.11.2020 21:15:13
  • Last modified 21.11.2024 05:33:12

IBM FileNet Content Manager 5.5.4 and 5.5.5 is potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 188736.

5.4

CVE-2020-4447

  • EPSS 0.24%
  • Published 23.07.2020 16:15:12
  • Last modified 21.11.2024 05:32:44

IBM FileNet Content Manager 5.5.3 and 5.5.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

4.4

CVE-2019-4572

  • EPSS 0.1%
  • Published 14.10.2019 14:15:10
  • Last modified 21.11.2024 04:43:45

IBM FileNet Content Manager 5.5.2 and 5.5.3 in specific configurations, could log the web service user credentials into a log file that could be accessed by an administrator on the local machine. IBM X-Force ID: 166798.

7.1

CVE-2018-1844

  • EPSS 0.35%
  • Published 12.10.2018 11:29:00
  • Last modified 21.11.2024 04:00:29

IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-...

5.4

CVE-2018-1555

  • EPSS 0.22%
  • Published 06.07.2018 14:29:01
  • Last modified 21.11.2024 04:00:00

IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

5.4

CVE-2018-1556

  • EPSS 0.22%
  • Published 06.07.2018 14:29:01
  • Last modified 21.11.2024 04:00:00

IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...