|
196601
|
8.2 |
HIGH
Network
|
ibm
|
spectrum_scale
|
A vulnerability in the Spectrum Scale 5.0.5.0 through 5.1.6.1 core component could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID…
|
NVD-CWE-noinfo
|
CVE-2020-4927
|
2024-11-21 14:33 |
2023-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196602
|
- |
|
-
|
-
|
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 190837.
|
-
|
CVE-2020-4874
|
2024-11-21 14:33 |
2024-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196603
|
- |
|
-
|
-
|
Minerbabe through V4.16 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io.
|
-
|
CVE-2020-5200
|
2024-11-21 14:33 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196604
|
5.3 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in furt…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2020-4868
|
2024-11-21 14:33 |
2023-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196605
|
5.5 |
MEDIUM
Local
|
ibm
|
cloud_pak_system
|
IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 191290.
|
-
|
CVE-2020-4914
|
2024-11-21 14:33 |
2023-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196606
|
8.8 |
HIGH
Network
|
ibm
|
financial_transaction_manager
|
IBM Financial Transaction Manager 3.2.0 through 3.2.10 could allow an authenticated user to perform unauthorized actions due to improper validation. IBM X-Force ID: 192954.
|
CWE-20
Improper Input Validation
|
CVE-2020-5002
|
2024-11-21 14:33 |
2023-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196607
|
7.5 |
HIGH
Network
|
ibm
|
financial_transaction_manager
|
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is …
|
-
|
CVE-2020-5026
|
2024-11-21 14:33 |
2023-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196608
|
7.5 |
HIGH
Network
|
ibm
|
financial_transaction_manager
|
IBM Financial Transaction Manager 3.2.0 through 3.2.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot"…
|
CWE-22
Path Traversal
|
CVE-2020-5001
|
2024-11-21 14:33 |
2023-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196609
|
4.3 |
MEDIUM
Network
|
dell
|
emc_isilon_onefs
|
The Dell Isilon OneFS versions 8.2.2 and earlier SSHD process improperly allows Transmission Control Protocol (TCP) and stream forwarding. This provides the remotesupport user and users with restrict…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-5355
|
2024-11-21 14:33 |
2022-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196610
|
9.1 |
CRITICAL
Network
|
ibm
|
elastic_storage_system
spectrum_scale
|
A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. …
|
CWE-862
Missing Authorization
|
CVE-2020-4926
|
2024-11-21 14:33 |
2022-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
