IBM Entirex
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Entirex.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Entirex. Last year, in 2025 Entirex had 13 security vulnerabilities published. Right now, Entirex is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 13 | 4.35 |
It may take a day or so for new Entirex vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Entirex Security Vulnerabilities
IBM EntireX 11.1 DoS via Inefficient Regex (CVE-2024-54170)
CVE-2024-54170
5.5 - Medium
- February 27, 2025
IBM EntireX 11.1 could allow a local user to cause a denial of service due to use of a regular expression with an inefficient complexity that consumes excessive CPU cycles.
ReDoS
IBM EntireX 11.1 Directory Traversal via URL /../ in Authenticated Requests
CVE-2024-54169
6.5 - Medium
- February 27, 2025
IBM EntireX 11.1 could allow an authenticated attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
Directory traversal
IBM EntireX 11.1 Local Info Disclosure via Detailed Error Messages
CVE-2024-56812
5.5 - Medium
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Local Info Disclosure via Detailed Error Message
CVE-2024-56811
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Local Info Leak via Detailed Error Msg
CVE-2024-56810
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Error Message Info Disclosure (Local)
CVE-2024-56496
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Local Privilege Info Disclosure via Technical Error
CVE-2024-56495
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Error Output Disclosure: Local User Info Leak
CVE-2024-56494
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Local Info Disclosure via Error Message
CVE-2024-56493
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Local TS Integrity Mod Vulnerability
CVE-2025-0759
3.3 - Low
- February 27, 2025
IBM EntireX 11.1 could allow a local user to unintentionally modify data timestamp integrity due to improper shared resource synchronization.
TOCTTOU
IBM EntireX 11.1 XXE Vulnerability in XML Processor
CVE-2024-54171
7.1 - High
- February 06, 2025
IBM EntireX 11.1 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. An authenticated attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
XXE
IBM EntireX 11.1 LoU Sensitive Info Disclosure via Error Message
CVE-2024-56467
3.3 - Low
- February 06, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
Generation of Error Message Containing Sensitive Information
IBM EntireX 11.1 Local DoS via Unhandled Error
CVE-2025-0158
5.5 - Medium
- February 06, 2025
IBM EntireX 11.1 could allow a local user to cause a denial of service due to an unhandled error and fault isolation.
Uncaught Exception
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Entirex or by IBM? Click the Watch button to subscribe.
