|
194741
|
5.4 |
MEDIUM
Network
|
ibm
|
business_automation_workflow
cloud_pak_for_automation
|
IBM Business Automation Workflow 19.0.03 and 20.0 and IBM Cloud Pak for Automation 20.0.3-IF002 and 21.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary J…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29775
|
2024-11-21 15:01 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194742
|
4.3 |
MEDIUM
Network
|
ibm
|
business_process_manager
business_automation_workflow
|
IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.5 and 8.6 could allow an authenticated user to obtain sensitive information about another user under nondefaul…
|
NVD-CWE-noinfo
|
CVE-2021-29751
|
2024-11-21 15:01 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194743
|
4.4 |
MEDIUM
Local
|
ibm
|
aix
vios
|
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user that is in the with elevated group privileges to cause a denial of service due to a vulnerability in the lpd daemon. IBM X-Force ID: 200255.
|
NVD-CWE-noinfo
|
CVE-2021-29693
|
2024-11-21 15:01 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194744
|
5.4 |
MEDIUM
Network
|
ibm
|
security_verify
|
IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29677
|
2024-11-21 15:01 |
2021-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194745
|
5.4 |
MEDIUM
Network
|
ibm
|
security_verify
|
IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) is vulnerable to link injection. By persuading a victim to click on a specially-crafted URL link, a remote attacker could exploit thi…
|
CWE-74
Injection
|
CVE-2021-29676
|
2024-11-21 15:01 |
2021-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194746
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5, under specific circumstance of a table being dropped while being accessed in another session, could …
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2021-29777
|
2024-11-21 15:01 |
2021-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194747
|
7.5 |
HIGH
Network
|
ibm
|
db2
|
Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server terminates abnormally when executing a specially crafted SELECT statement. IBM X-Force…
|
NVD-CWE-noinfo
|
CVE-2021-29703
|
2024-11-21 15:01 |
2021-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194748
|
7.5 |
HIGH
Network
|
reportportal
|
service-api
|
Report portal is an open source reporting and analysis framework. Starting from version 3.1.0 of the service-api XML parsing was introduced. Unfortunately the XML parser was not configured properly t…
|
CWE-611
XXE
|
CVE-2021-29620
|
2024-11-21 15:01 |
2021-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194749
|
7.1 |
HIGH
Local
|
ibm
|
aix
|
IBM AIX 7.1 could allow a non-privileged local user to exploit a vulnerability in the trace facility to expose sensitive information or cause a denial of service. IBM X-Force ID: 200663.
|
NVD-CWE-noinfo
|
CVE-2021-29706
|
2024-11-21 15:01 |
2021-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194750
|
7.5 |
HIGH
Network
|
ibm
|
db2
|
Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1.4 and 11.5.5 is vulnerable to a denial of service as the server terminates abnormally when executing a specially crafted SELECT stat…
|
CWE-74
Injection
|
CVE-2021-29702
|
2024-11-21 15:01 |
2021-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
