|
198541
|
6.1 |
MEDIUM
Network
|
ibm
|
financial_transaction_manager
|
IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionalit…
|
CWE-79
Cross-site Scripting
|
CVE-2020-4560
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198542
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4554
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198543
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4553
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198544
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4552
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198545
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4551
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198546
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.1 and 9.2.2 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, a…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4550
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198547
|
7.8 |
HIGH
Local
|
ibm
|
i2_analysts_notebook
|
IBM i2 Analyst Notebook 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-4549
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198548
|
8.8 |
HIGH
Local
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper handling of UNC paths. By scheduling a…
|
NVD-CWE-noinfo
|
CVE-2020-4534
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198549
|
9.1 |
CRITICAL
Network
|
ibm
|
cognos_analytics
|
IBM Cognos Anaytics 11.0 and 11.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive infor…
|
CWE-611
XXE
|
CVE-2020-4377
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198550
|
6.3 |
MEDIUM
Network
|
ibm
|
financial_transaction_manager_for_multiplatform
|
IBM Financial Transaction Manager 3.2.4 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete in…
|
CWE-89
SQL Injection
|
CVE-2020-4328
|
2024-11-21 14:32 |
2020-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
