Show filters
9 Total Results
Displaying 1-9 of 9
Sort by:
Attacker Value
Unknown
CVE-2015-7490
Disclosure Date: March 03, 2016 (last updated November 25, 2024)
IBM InfoSphere Information Server 8.5 through FP3, 8.7 through FP2, 9.1 through 9.1.2.0, 11.3 through 11.3.1.2, and 11.5 allows remote authenticated users to bypass intended access restrictions via a modified cookie.
0
Attacker Value
Unknown
CVE-2015-1901
Disclosure Date: June 28, 2015 (last updated October 05, 2023)
The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local users to obtain sensitive information via unspecified commands.
0
Attacker Value
Unknown
CVE-2014-0933
Disclosure Date: May 16, 2014 (last updated October 05, 2023)
Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Information Server Metadata Workbench 8.1 through 9.1 allows remote attackers to hijack the authentication of arbitrary users.
0
Attacker Value
Unknown
CVE-2013-4059
Disclosure Date: March 16, 2014 (last updated October 05, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified interfaces.
0
Attacker Value
Unknown
CVE-2013-4057
Disclosure Date: March 16, 2014 (last updated October 05, 2023)
Cross-site request forgery (CSRF) vulnerability in the XML Pack in IBM InfoSphere Information Server 8.5.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allows remote attackers to hijack the authentication of arbitrary users.
0
Attacker Value
Unknown
CVE-2013-4058
Disclosure Date: March 16, 2014 (last updated October 05, 2023)
Multiple SQL injection vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote authenticated users to execute arbitrary SQL commands via unspecified interfaces.
0
Attacker Value
Unknown
CVE-2013-4056
Disclosure Date: October 13, 2013 (last updated October 05, 2023)
Cross-site request forgery (CSRF) vulnerability in the Data Quality Console and Information Analyzer components in IBM InfoSphere Information Server 8.7 through FP2 and 9.1 through 9.1.2.0 allows remote attackers to hijack the authentication of arbitrary users.
0
Attacker Value
Unknown
CVE-2013-3040
Disclosure Date: August 16, 2013 (last updated October 05, 2023)
IBM InfoSphere Information Server through 8.5 FP3, 8.7 through FP2, and 9.1 produces login-failure messages indicating whether the username or password is incorrect, which allows remote attackers to enumerate user accounts via a brute-force attack.
0
Attacker Value
Unknown
CVE-2013-0502
Disclosure Date: April 01, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Information Server 8.1, 8.5 through FP3, 8.7 through FP2, and 9.1 allows remote attackers to inject arbitrary web script or HTML via a malformed URL.
0