Ibm

Infosphere Information Server

172 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-40699

  • EPSS 0.07%
  • Veröffentlicht 01.12.2023 21:15:07
  • Zuletzt bearbeitet 21.11.2024 08:19:59

IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of service due to improper input validation. IBM X-Force ID: 265161.

5.4

CVE-2023-42009

  • EPSS 0.07%
  • Veröffentlicht 01.12.2023 21:15:07
  • Zuletzt bearbeitet 21.11.2024 08:22:05

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

8.8

CVE-2023-38268

  • EPSS 0.04%
  • Veröffentlicht 01.12.2023 20:15:07
  • Zuletzt bearbeitet 21.11.2024 08:13:12

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 260585.

5.4

CVE-2023-43015

  • EPSS 0.06%
  • Veröffentlicht 01.12.2023 20:15:07
  • Zuletzt bearbeitet 21.11.2024 08:23:37

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

6.5

CVE-2023-40363

  • EPSS 0.04%
  • Veröffentlicht 18.11.2023 18:15:08
  • Zuletzt bearbeitet 21.11.2024 08:19:18

IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. IBM X-Force ID: 263332.

8.8

CVE-2023-23473

  • EPSS 0.04%
  • Veröffentlicht 28.08.2023 01:15:08
  • Zuletzt bearbeitet 21.11.2024 07:46:16

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 245400.

7.5

CVE-2023-24959

  • EPSS 0.05%
  • Veröffentlicht 28.08.2023 01:15:08
  • Zuletzt bearbeitet 21.11.2024 07:48:50

IBM InfoSphere Information Systems 11.7 could expose information about the host system and environment configuration. IBM X-Force ID: 246332.

8.8

CVE-2023-22877

  • EPSS 0.18%
  • Veröffentlicht 28.08.2023 01:15:07
  • Zuletzt bearbeitet 21.11.2024 07:45:33

IBM InfoSphere Information Server 11.7 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 244368.

6.5

CVE-2023-35898

  • EPSS 0.07%
  • Veröffentlicht 19.07.2023 01:15:10
  • Zuletzt bearbeitet 21.11.2024 08:08:56

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information due to an insecure security configuration in InfoSphere Data Flow Designer. IBM X-Force ID: 259352.

5.3

CVE-2023-33857

  • EPSS 0.05%
  • Veröffentlicht 17.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:05

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain system information using a specially crafted query that could aid in further attacks against the system. IBM X-Force ID: 257695.