Vulnerabilidades en IBM
4716 resultadosCVE-2018-1419LOWIBM WebSphere MQ 8.0 and 9.0, when configured to use a PAM module for authentication, could allow a user to cause a deadlock in the IBM MQ PEPSS 2.2%CVE-2019-4310HIGHIBM Security Guardium Big Data Intelligence 4.0 (SonarG) uses an inadequate account lockout setting that could allow a remote attacker to brEPSS 2.2%CVE-2018-1388—GSKit V7 may disclose side channel information via discrepancies between valid and invalid PKCS#1 padding. IBM X-Force ID: 138212.EPSS 2.2%CVE-2018-1547HIGHIBM Robotic Process Automation with Automation Anywhere 10.0 could allow a remote attacker to execute arbitrary code on the system, caused bEPSS 2.2%CVE-2021-39065HIGHIBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to execute arbitrary commands on the system, caused by imEPSS 2.2%CVE-2017-1548—IBM Sterling File Gateway 2.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafteEPSS 2.2%CVE-2019-4165MEDIUMIBM StoreIQ 7.6.0.0. through 7.6.0.18 could allow a remote attacker to cause a denial of service attack using repeated requests to the serveEPSS 2.2%CVE-2020-4355MEDIUMIBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of service, causEPSS 2.2%CVE-2019-4720HIGHIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service, caused by sending a specially-crafted request.EPSS 2.2%CVE-2022-22495MEDIUMIBM i 7.3, 7.4, and 7.5 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow theEPSS 2.1%CVE-2018-1840MEDIUMIBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to gain elevated privileges on the system, caused when a securityEPSS 2.1%CVE-2019-4244CRITICALIBM SmartCloud Analytics 1.3.1 through 1.3.5 could allow a remote attacker to gain unauthorized information and unrestricted control over ZoEPSS 2.1%CVE-2022-22394HIGHThe IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security restrictions, caused by improper enforcement of EPSS 2.1%CVE-2017-1741MEDIUMIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to obtain sensitive information caused by improper hanEPSS 2.1%CVE-2017-1747MEDIUMA specially crafted message could cause a denial of service in IBM WebSphere MQ 9.0, 9.0.0.1, 9.0.0.2, 9.0.1, 9.0.2, 9.0.3, and 9.0.4 applicEPSS 2.1%CVE-2021-20385HIGHIBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-cEPSS 2.1%CVE-2019-4193MEDIUMIBM Jazz for Service Management 1.1.3 and 1.1.3.2 stores sensitive information in URL parameters. This may lead to information disclosure ifEPSS 2.1%CVE-2019-4138MEDIUMIBM Tivoli Storage Productivity Center 5.2.13 through 5.3.0.1 could allow a remote attacker to obtain sensitive information, caused by the fEPSS 2.1%CVE-2019-4012MEDIUMIBM BigFix WebUI Profile Management 6 and Software Distribution 23 is vulnerable to SQL injection. A remote attacker could send specially-crEPSS 2.1%CVE-2017-1219—IBM Tivoli Endpoint Manager is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could EPSS 2.1%