| CVE |
Vendors |
Products |
Updated |
CVSS |
| CVE-2017-1695 |
1 Ibm |
1 Qradar Security Information And Event Manager |
2019-02-19 |
5.0 |
| IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 134177. |
| CVE-2018-1701 |
1 Ibm |
2 Infosphere Information Server, Infosphere Information Server On Cloud |
2019-02-19 |
6.0 |
| IBM InfoSphere Information Server 11.7 could allow an authenciated user under specialized conditions to inject commands into the installation process that would execute on the WebSphere Application Server. IBM X-Force ID: 145970. |
| CVE-2018-1727 |
1 Ibm |
1 Infosphere Information Server |
2019-02-19 |
6.4 |
| IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume... |
| CVE-2018-1895 |
1 Ibm |
2 Infosphere Information Governance Catalog, Infosphere Information Server On Cloud |
2019-02-19 |
3.5 |
| IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to... |
| CVE-2016-0666 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
3.5 |
| Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to... |
| CVE-2016-0650 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to... |
| CVE-2016-0649 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to PS. |
| CVE-2016-0648 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to PS. |
| CVE-2016-0647 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to FTS. |
| CVE-2016-0646 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DML. |
| CVE-2016-0644 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to DDL. |
| CVE-2016-0643 |
7 Oracle, Redhat, Ibm and 4 more |
7 Leap, Debian Linux, Enterprise Linux and 4 more |
2019-02-19 |
4.0 |
| Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML. |
| CVE-2016-0641 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.9 |
| Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect confidentiality and availability via... |
| CVE-2016-0640 |
7 Oracle, Redhat, Ibm and 4 more |
8 Leap, Linux, Debian Linux and 5 more |
2019-02-19 |
4.9 |
| Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users to affect integrity and availability via... |
| CVE-2015-8530 |
1 Ibm |
1 Spss Statistics |
2019-02-14 |
6.0 |
| Stack-based buffer overflow in the Initialize function in an ActiveX control in IBM SPSS Statistics 19 and 20 before 20.0.0.2-IF0008, 21 before 21.0.0.2-IF0010, 22 before 22.0.0.2-IF0011, 23 before 23.0.0.3-IF0001, and 24 before 24.0.0.0-IF0003... |
| CVE-2015-7419 |
1 Ibm |
1 Websphere Portal |
2019-02-13 |
7.8 |
| IBM WebSphere Portal 8.0.0.1 before CF19 and 8.5.0 before CF09 allows remote attackers to cause a denial of service (memory consumption) via crafted requests. |
| CVE-2015-4947 |
1 Ibm |
1 Http Server |
2019-02-12 |
9.0 |
| Stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere Application Server and other products, allows... |
| CVE-2015-4000 |
12 Google, Openssl, Apple and 9 more |
25 Safari, Network Security Services, Ie and 22 more |
2019-02-12 |
4.3 |
| The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a... |
| CVE-2019-4008 |
1 Ibm |
1 Api Connect |
2019-02-12 |
5.0 |
| API Connect V2018.1 through 2018.4.1.1 is impacted by access token leak. Authorization tokens in some URLs can result in the tokens being written to log files. IBM X-Force ID: 155626. |
| CVE-2018-1666 |
1 Ibm |
1 Datapower Gateway |
2019-02-11 |
4.0 |
| IBM DataPower Gateway 2018.4.1.0, 7.6.0.0 through 7.6.0.11, 7.5.2.0 through 7.5.2.18, 7.5.1.0 through 7.5.1.18, 7.5.0.0 through 7.5.0.19, and 7.7.0.0 through 7.7.1.3 could allow an authenticated user to inject arbitrary messages that would be... |
