Vulnerabilities > IBM > Security Network Protection Firmware

DATE CVE VULNERABILITY TITLE RISK
2016-01-18 CVE-2016-0201 Information Exposure vulnerability in IBM Security Network Protection Firmware 5.3.1/5.3.2
GSKit in IBM Security Network Protection 5.3.1 before 5.3.1.7 and 5.3.2 allows remote attackers to discover credentials by triggering an MD5 collision.
network
ibm CWE-200
4.3
4.3
2015-06-28 CVE-2014-6198 Cross-Site Request Forgery (CSRF) vulnerability in IBM Security Network Protection Firmware 5.3
Cross-site request forgery (CSRF) vulnerability in IBM Security Network Protection 5.3 before 5.3.1 allows remote attackers to hijack the authentication of arbitrary users.
network
ibm CWE-352
6.8
6.8
2014-11-23 CVE-2014-6183 Resource Management Errors vulnerability in IBM products
IBM Security Network Protection 5.1 before 5.1.0.0 FP13, 5.1.1 before 5.1.1.0 FP8, 5.1.2 before 5.1.2.0 FP9, 5.1.2.1 before FP5, 5.2 before 5.2.0.0 FP5, and 5.3 before 5.3.0.0 FP1 on XGS devices allows remote authenticated users to execute arbitrary commands via unspecified vectors.
network
low complexity
ibm CWE-399
4.0
4.0
2013-11-13 CVE-2013-5442 Cross-Site Scripting vulnerability in IBM products
Cross-site scripting (XSS) vulnerability in the Local Management Interface (LMI) in IBM Security Network Protection on XGS 5100 devices with firmware 5.1 before 5.1.0.6 and 5.1.1 before 5.1.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
ibm CWE-79
4.3
4.3