|
195081
|
6.5 |
MEDIUM
Network
|
ibm
netapp
|
cognos_analytics
oncommand_insight
|
IBM Cognos Analytics 10.0 and 11.1 is susceptible to a weakness in the implementation of the System Appearance configuration setting. An attacker could potentially bypass business logic to modify the…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-20461
|
2024-11-21 14:46 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195082
|
4.3 |
MEDIUM
Network
|
ibm
|
planning_analytics
|
IBM Planning Analytics 2.0 could be vulnerable to cross-site request forgery (CSRF) which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the websit…
|
CWE-352
Origin Validation Error
|
CVE-2021-20580
|
2024-11-21 14:46 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195083
|
5.5 |
MEDIUM
Local
|
ibm
|
spectrum_protect_plus
|
IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791.
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-20490
|
2024-11-21 14:46 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195084
|
5.4 |
MEDIUM
Network
|
ibm
|
planning_analytics
|
IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20477
|
2024-11-21 14:46 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195085
|
8.8 |
HIGH
Network
|
ibm
|
security_identity_manager_adapter
|
IBM Security Identity Manager Adapters 6.0 and 7.0 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulne…
|
CWE-74
Injection
|
CVE-2021-20574
|
2024-11-21 14:46 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195086
|
6.5 |
MEDIUM
Network
|
ibm
|
security_identity_manager_adapter
|
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause the…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20573
|
2024-11-21 14:46 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195087
|
6.5 |
MEDIUM
Network
|
ibm
|
security_identity_manager_adapter
|
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow the and cause th…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20572
|
2024-11-21 14:46 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195088
|
6.5 |
MEDIUM
Network
|
ibm
|
security_identity_manager_adapter
|
IBM Security Identity Manager Adapters 6.0 and 7.0 are vulnerable to a heap based buffer overflow, caused by improper bounds. An authenticared user could overflow the buffer and cause the service to …
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20494
|
2024-11-21 14:46 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195089
|
4.3 |
MEDIUM
Network
|
ibm
|
guardium_data_encryption
|
IBM Guardium Data Encryption (GDE) 4.0.0.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-20413
|
2024-11-21 14:46 |
2021-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195090
|
4.9 |
MEDIUM
Network
|
ibm
|
security_verify
|
IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) could disclose sensitive information through an HTTP GET request by a privileged user due to improper input validation.. IBM X-Force …
|
CWE-20
Improper Input Validation
|
CVE-2021-20583
|
2024-11-21 14:46 |
2021-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
