Ibm

Tivoli Application Dependency Discovery Manager

22 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-23227

  • EPSS 0.05%
  • Published 23.01.2025 18:15:33
  • Last modified 15.08.2025 12:46:20

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.11 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended funct...

8.8

CVE-2023-47142

  • EPSS 0.04%
  • Published 02.02.2024 14:15:54
  • Last modified 21.11.2024 08:29:51

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 could allow an attacker on the organization's local network to escalate their privileges due to unauthorized API access. IBM X-Force ID: 270267.

6.1

CVE-2023-47144

  • EPSS 0.15%
  • Published 02.02.2024 13:15:08
  • Last modified 21.11.2024 08:29:51

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially ...

9.8

CVE-2023-47143

  • EPSS 0.1%
  • Published 02.02.2024 13:15:08
  • Last modified 21.11.2024 08:29:51

IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vuln...

7.5

CVE-2018-1675

  • EPSS 0.21%
  • Published 04.02.2019 21:29:00
  • Last modified 21.11.2024 04:00:11

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 could expose password hashes in stored in system memory on target systems that are configured to use TADDM. IBM X-Force ID: 145110.

8.8

CVE-2018-1455

  • EPSS 0.18%
  • Published 15.08.2018 15:29:00
  • Last modified 21.11.2024 03:59:51

IBM Tivoli Application Dependency Discovery Manager 7.2.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID:...

7.5

CVE-2013-3017

  • EPSS 0.25%
  • Published 09.07.2018 18:29:00
  • Last modified 21.11.2024 01:52:50

IBM Tivoli Application Dependency Discovery Manager (TADDM) before 7.2.1.5 and 7.2.x before 7.2.2 make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging support for weak SSL ciphers. IBM X-Force ID: 84353.

8.1

CVE-2013-3023

  • EPSS 0.29%
  • Published 24.05.2018 21:29:00
  • Last modified 21.11.2024 01:52:50

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the network for a session in which HTTP is used. IBM X-Force...

5.3

CVE-2013-3018

  • EPSS 0.14%
  • Published 24.05.2018 21:29:00
  • Last modified 21.11.2024 01:52:50

The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happya...

5.5

CVE-2013-4040

  • EPSS 0.04%
  • Published 01.05.2018 18:29:00
  • Last modified 21.11.2024 01:54:46

IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2.x before 7.2.1.5 and 7.2.x before 7.2.2.0 on Unix use weak permissions (755) for unspecified configuration and log files, which allows local users to obtain sensitive information by re...