Ibm

Infosphere Information Server

169 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-22878

  • EPSS 0.01%
  • Veröffentlicht 19.05.2023 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:45:34

IBM InfoSphere Information Server 11.7 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 244373.

7.5

CVE-2023-30441

  • EPSS 0.03%
  • Veröffentlicht 29.04.2023 15:15:18
  • Zuletzt bearbeitet 21.11.2024 08:00:11

IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE 8.0.7.0 through 8.0.7.11 components could expose sensitive information using a combination of flaws and configurations. IBM X-Force ID: 253188.

5.4

CVE-2023-25928

  • EPSS 0.11%
  • Veröffentlicht 21.02.2023 14:15:13
  • Zuletzt bearbeitet 21.11.2024 07:50:26

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

7.5

CVE-2023-24960

  • EPSS 0.08%
  • Veröffentlicht 17.02.2023 19:15:11
  • Zuletzt bearbeitet 21.11.2024 07:48:51

IBM InfoSphere Information Server 11.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-For...

5.5

CVE-2023-24964

  • EPSS 0.01%
  • Veröffentlicht 17.02.2023 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:48:51

IBM InfoSphere Information Server 11.7 could allow a local user to obtain sensitive information from a log files. IBM X-Force ID: 246463.

4.6

CVE-2023-23475

  • EPSS 0.16%
  • Veröffentlicht 08.02.2023 19:15:11
  • Zuletzt bearbeitet 21.11.2024 07:46:16

IBM Infosphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

5.4

CVE-2022-47983

  • EPSS 0.18%
  • Veröffentlicht 01.02.2023 18:15:10
  • Zuletzt bearbeitet 21.11.2024 07:32:39

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

5.3

CVE-2022-41733

  • EPSS 0.04%
  • Veröffentlicht 20.01.2023 19:15:15
  • Zuletzt bearbeitet 21.11.2024 07:23:45

IBM InfoSphere Information Server 11.7 could allow a remote attacked to cause some of the components to be unusable until the process is restarted. IBM X-Force ID: 237583.

9.8

CVE-2022-40752

  • EPSS 0.46%
  • Veröffentlicht 16.11.2022 23:15:10
  • Zuletzt bearbeitet 23.07.2025 21:15:25

IBM InfoSphere DataStage 11.7 is vulnerable to a command injection vulnerability due to improper neutralization of special elements. IBM X-Force ID:  236687.

5.4

CVE-2022-40753

  • EPSS 0.17%
  • Veröffentlicht 15.11.2022 21:15:38
  • Zuletzt bearbeitet 21.11.2024 07:21:59

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wit...