IBM Websphere Extreme Scale
By the Year
In 2024 there have been 0 vulnerabilities in IBM Websphere Extreme Scale . Websphere Extreme Scale did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 5.30 |
| 2020 | 0 | 0.00 |
| 2019 | 4 | 4.90 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Websphere Extreme Scale vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Websphere Extreme Scale Security Vulnerabilities
IBM WebSphere eXtreme Scale 8.6.1 stores sensitive information in URL parameters
CVE-2020-4336
5.3 - Medium
- January 06, 2021
IBM WebSphere eXtreme Scale 8.6.1 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 177932.
Information Disclosure
IBM WebSphere eXtreme Scale 8.6 Admin Console is vulnerable to cross-site scripting
CVE-2019-4106
4.8 - Medium
- September 30, 2019
IBM WebSphere eXtreme Scale 8.6 Admin Console is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158099.
XSS
IBM WebSphere eXtreme Scale 8.6 Admin Console could allow a remote attacker to hijack the clicking action of the victim
CVE-2019-4109
6.1 - Medium
- September 30, 2019
IBM WebSphere eXtreme Scale 8.6 Admin Console could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 158102.
Clickjacking
IBM WebSphere eXtreme Scale 8.6 Admin Console allows web pages to be stored locally which can be read by another user on the system
CVE-2019-4112
3.3 - Low
- September 30, 2019
IBM WebSphere eXtreme Scale 8.6 Admin Console allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 158105.
Improper Privilege Management
IBM WebSphere eXtreme Scale 8.6 Admin API is vulnerable to cross-site scripting
CVE-2019-4115
5.4 - Medium
- September 30, 2019
IBM WebSphere eXtreme Scale 8.6 Admin API is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158113.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Websphere Extreme Scale or by IBM? Click the Watch button to subscribe.
