CVE-2024-45655
- EPSS 0.02%
- Veröffentlicht 03.06.2025 14:48:55
- Zuletzt bearbeitet 12.08.2025 20:06:38
IBM Application Gateway 19.12 through 24.09 could allow a local privileged user to perform unauthorized actions due to incorrect permissions assignment.
- EPSS 0.11%
- Veröffentlicht 04.04.2024 18:15:14
- Zuletzt bearbeitet 14.08.2025 18:54:13
IBM Security Verify Access 10.0.0 through 10.0.7 and IBM Application Gateway 20.01 through 24.03 could allow a remote attacker to obtain highly sensitive private information or cause a denial of service using a specially crafted HTTP request. IBM X-...
CVE-2022-22387
- EPSS 0.24%
- Veröffentlicht 28.09.2022 16:15:09
- Zuletzt bearbeitet 20.05.2025 21:15:21
IBM Application Gateway is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted se...
CVE-2021-20575
- EPSS 0.04%
- Veröffentlicht 01.06.2021 14:15:08
- Zuletzt bearbeitet 21.11.2024 05:46:48
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by another user on the system. X-Force ID: 199278.
CVE-2021-20576
- EPSS 1.01%
- Veröffentlicht 01.06.2021 14:15:08
- Zuletzt bearbeitet 21.11.2024 05:46:48
IBM Security Verify Access 20.07 could allow a remote attacker to send a specially crafted HTTP GET request that could cause the application to crash.