Vulnerabilities > IBM

DATE CVE VULNERABILITY TITLE RISK
2024-02-12 CVE-2022-22506 Unspecified vulnerability in IBM Robotic Process Automation 21.0.2
IBM Robotic Process Automation 21.0.2 contains a vulnerability that could allow user ids may be exposed across tenants.
low complexity
ibm
4.6
2024-02-12 CVE-2022-34309 Unspecified vulnerability in IBM Cics TX 11.1
IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm
7.5
2024-02-12 CVE-2022-34311 Unspecified vulnerability in IBM Cics TX 11.1
IBM CICS TX Standard and Advanced 11.1 could allow a user with physical access to the web browser to gain access to the user's session due to insufficiently protected credentials.
low complexity
ibm
4.3
2024-02-12 CVE-2022-34310 Unspecified vulnerability in IBM Cics TX 11.1/11.1.0.0
IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm
7.5
2024-02-12 CVE-2022-38714 Insufficiently Protected Credentials vulnerability in IBM Datastage
IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user.
network
low complexity
ibm CWE-522
4.9
2024-02-10 CVE-2023-50957 Unspecified vulnerability in IBM Storage Defender Resiliency Service 2.0
IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform unauthorized actions after obtaining encrypted data from clear text key storage.
network
low complexity
ibm
7.2
2024-02-10 CVE-2024-22312 Insufficiently Protected Credentials vulnerability in IBM Storage Defender Resiliency Service 2.0
IBM Storage Defender - Resiliency Service 2.0 stores user credentials in plain clear text which can be read by a local user.
local
low complexity
ibm CWE-522
5.5
2024-02-10 CVE-2024-22313 Unspecified vulnerability in IBM Storage Defender Resiliency Service 2.0
IBM Storage Defender - Resiliency Service 2.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
local
low complexity
ibm
7.8
2024-02-10 CVE-2024-22361 Unspecified vulnerability in IBM Semeru Runtime
IBM Semeru Runtime 8.0.302.0 through 8.0.392.0, 11.0.12.0 through 11.0.21.0, 17.0.1.0 - 17.0.9.0, and 21.0.1.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm
7.5
2024-02-09 CVE-2023-32341 Unspecified vulnerability in IBM Sterling B2B Integrator
IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.8 and 6.1.0.0 through 6.1.2.3 could allow an authenticated user to cause a denial of service due to uncontrolled resource consumption.
network
low complexity
ibm
6.5