Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product Infosphere Information Server
Total 144 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-4239 1 Ibm 1 Infosphere Information Server 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Web console in IBM InfoSphere Information Server 8.1 before FP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2024-39751 1 Ibm 1 Infosphere Information Server 2024-08-29 N/A 4.3 MEDIUM
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 297429
CVE-2024-40704 1 Ibm 1 Infosphere Information Server 2024-08-15 N/A 4.9 MEDIUM
IBM InfoSphere Information Server 11.7 could allow a privileged user to obtain sensitive information from authentication request headers. IBM X-Force ID: 298277.
CVE-2024-40705 1 Ibm 1 Infosphere Information Server 2024-08-15 N/A 6.5 MEDIUM
IBM InfoSphere Information Server could allow an authenticated user to consume file space resources due to unrestricted file uploads. IBM X-Force ID: 298279.