CVE-2025-1142
- EPSS 0.03%
- Veröffentlicht 20.08.2025 14:44:07
- Zuletzt bearbeitet 03.09.2025 16:32:12
IBM Edge Application Manager 4.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
CVE-2025-1139
- EPSS 0.01%
- Veröffentlicht 20.08.2025 14:42:59
- Zuletzt bearbeitet 03.09.2025 16:35:22
IBM Edge Application Manager 4.5 could allow a local user to read or modify resources that they should not have authorization to access due to incorrect permission assignment.
CVE-2020-4805
- EPSS 0.05%
- Veröffentlicht 23.09.2021 17:15:11
- Zuletzt bearbeitet 21.11.2024 05:33:16
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 189539.
CVE-2020-4809
- EPSS 0.05%
- Veröffentlicht 23.09.2021 17:15:11
- Zuletzt bearbeitet 21.11.2024 05:33:16
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 189633.
CVE-2020-4941
- EPSS 0.12%
- Veröffentlicht 23.09.2021 17:15:11
- Zuletzt bearbeitet 21.11.2024 05:33:27
IBM Edge 4.2 could reveal sensitive version information about the server from error pages that could aid an attacker in further attacks against the system. IBM X-Force ID: 191941.
CVE-2020-4803
- EPSS 0.05%
- Veröffentlicht 23.09.2021 17:15:10
- Zuletzt bearbeitet 21.11.2024 05:33:16
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 189535.
CVE-2020-4792
- EPSS 0.14%
- Veröffentlicht 05.04.2021 17:15:12
- Zuletzt bearbeitet 21.11.2024 05:33:15
IBM Edge 4.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM ...