Vulnerabilities > IBM > High

DATE CVE VULNERABILITY TITLE RISK
2020-05-27 CVE-2020-4379 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
7.5
2020-05-27 CVE-2020-4350 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
7.5
2020-05-27 CVE-2020-4349 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
7.5
2020-05-27 CVE-2020-4226 Information Exposure vulnerability in IBM Mobilefirst Platform Foundation 8.0.0.0
IBM MobileFirst Platform Foundation 8.0.0.0 stores highly sensitive information in URL parameters.
network
low complexity
ibm CWE-200
7.5
7.5
2020-05-19 CVE-2020-4411 Improper Input Validation vulnerability in IBM Spectrum Scale
The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system.
local
low complexity
ibm CWE-20
7.1
7.1
2020-05-14 CVE-2020-4468 Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.1
IBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by memory corruption.
local
low complexity
ibm CWE-787
7.8
7.8
2020-05-14 CVE-2020-4467 Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.1
IBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by memory corruption.
local
low complexity
ibm CWE-787
7.8
7.8
2020-05-14 CVE-2020-4422 Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.1
IBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruption.
local
low complexity
ibm CWE-787
7.8
7.8
2020-05-14 CVE-2020-4343 Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.1
IBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruption.
local
low complexity
ibm CWE-787
7.8
7.8
2020-05-14 CVE-2020-4288 Out-of-bounds Write vulnerability in IBM I2 Analysts Notebook 9.2.1
IBM i2 Intelligent Analyis Platform 9.2.1 could allow a remote attacker to execute arbitrary code on the system, caused by a memory corruption error.
local
low complexity
ibm CWE-787
7.8
7.8