Ibm

Infosphere Information Server

169 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2023-43015

  • EPSS 0.06%
  • Veröffentlicht 01.12.2023 20:15:07
  • Zuletzt bearbeitet 21.11.2024 08:23:37

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

6.5

CVE-2023-40363

  • EPSS 0.04%
  • Veröffentlicht 18.11.2023 18:15:08
  • Zuletzt bearbeitet 21.11.2024 08:19:18

IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. IBM X-Force ID: 263332.

8.8

CVE-2023-23473

  • EPSS 0.04%
  • Veröffentlicht 28.08.2023 01:15:08
  • Zuletzt bearbeitet 21.11.2024 07:46:16

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 245400.

7.5

CVE-2023-24959

  • EPSS 0.05%
  • Veröffentlicht 28.08.2023 01:15:08
  • Zuletzt bearbeitet 21.11.2024 07:48:50

IBM InfoSphere Information Systems 11.7 could expose information about the host system and environment configuration. IBM X-Force ID: 246332.

8.8

CVE-2023-22877

  • EPSS 0.18%
  • Veröffentlicht 28.08.2023 01:15:07
  • Zuletzt bearbeitet 21.11.2024 07:45:33

IBM InfoSphere Information Server 11.7 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 244368.

6.5

CVE-2023-35898

  • EPSS 0.07%
  • Veröffentlicht 19.07.2023 01:15:10
  • Zuletzt bearbeitet 21.11.2024 08:08:56

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information due to an insecure security configuration in InfoSphere Data Flow Designer. IBM X-Force ID: 259352.

5.3

CVE-2023-33857

  • EPSS 0.05%
  • Veröffentlicht 17.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:05

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain system information using a specially crafted query that could aid in further attacks against the system. IBM X-Force ID: 257695.

9.8

CVE-2023-32336

  • EPSS 0.19%
  • Veröffentlicht 22.05.2023 01:15:42
  • Zuletzt bearbeitet 21.11.2024 08:03:08

IBM InfoSphere Information Server 11.7 is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. IBM X-Force ID: 255285.

5.4

CVE-2023-28529

  • EPSS 0.1%
  • Veröffentlicht 19.05.2023 16:15:14
  • Zuletzt bearbeitet 21.11.2024 07:55:17

IBM InfoSphere Information Server 11.7 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosu...

9.8

CVE-2022-47984

  • EPSS 0.06%
  • Veröffentlicht 19.05.2023 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:32:40

IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID:...