|
220061
|
5.3 |
MEDIUM
Network
|
ibm
|
daeja_viewone
|
IBM Daeja ViewONE Professional, Standard & Virtual 5.0 through 5.0.5 could allow an unauthorized user to download server files resulting in sensitive information disclosure. IBM X-Force ID: 160012.
|
NVD-CWE-noinfo
|
CVE-2019-4260
|
2024-11-21 13:43 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220062
|
7.1 |
HIGH
Local
|
ibm
|
spectrum_protect
|
IBM Tivoli Storage Manager Server (IBM Spectrum Protect 7.1 and 8.1) could allow a local user to replace existing databases by restoring old data. IBM X-Force ID: 158336.
|
CWE-200
Information Exposure
|
CVE-2019-4140
|
2024-11-21 13:43 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220063
|
6.1 |
MEDIUM
Network
|
ibm
|
planning_analytics
|
IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially…
|
CWE-79
Cross-site Scripting
|
CVE-2019-4134
|
2024-11-21 13:43 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220064
|
5.3 |
MEDIUM
Network
|
ibm
|
spectrum_protect_operations_center
|
IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote attacker to obtain sensitive information, caused by an error message containing a stack trace. By creating an error with a stac…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2019-4129
|
2024-11-21 13:43 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220065
|
7.8 |
HIGH
Local
|
ibm
|
spectrum_protect_operations_center
|
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents could allow a local attacker to gain elevated privileges on the system, caused by loading a specially crafted library loaded by the dsmqsan…
|
NVD-CWE-noinfo
|
CVE-2019-4088
|
2024-11-21 13:43 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220066
|
9.8 |
CRITICAL
Network
|
ibm
|
spectrum_protect_operations_center
|
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to specifical…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-4087
|
2024-11-21 13:43 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220067
|
5.4 |
MEDIUM
Network
|
ibm
|
business_automation_workflow
business_process_manager
|
IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, and 19.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thu…
|
CWE-79
Cross-site Scripting
|
CVE-2019-4410
|
2024-11-21 13:43 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220068
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 could allow an authenticated user to execute a function that would cause the server to crash. IBM X-Force ID: 162714.
|
CWE-749
Exposed Dangerous Method or Function
|
CVE-2019-4386
|
2024-11-21 13:43 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220069
|
6.7 |
MEDIUM
Local
|
ibm
|
spectrum_protect_plus
|
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle or MongoDB databases, a redirected restore operation may result in an escalation of user privileges. IBM X-Force ID: …
|
NVD-CWE-noinfo
|
CVE-2019-4383
|
2024-11-21 13:43 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220070
|
6.7 |
MEDIUM
Local
|
ibm
|
spectrum_protect_plus
|
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle, DB2 or MongoDB databases, a redirected restore operation specifying a target path may allow execution of arbitrary c…
|
NVD-CWE-noinfo
|
CVE-2019-4357
|
2024-11-21 13:43 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
