Vulnerabilities > IBM > Tivoli Workload Scheduler > 9.5

DATE CVE VULNERABILITY TITLE RISK
2023-02-03 CVE-2022-22486 XXE vulnerability in IBM Tivoli Workload Scheduler 10.1/9.4/9.5
IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm CWE-611
critical
9.1
2023-02-03 CVE-2022-38389 Unspecified vulnerability in IBM Tivoli Workload Scheduler 10.1/9.4/9.5
IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm
critical
9.1
2021-08-09 CVE-2021-20349 Out-of-bounds Write vulnerability in IBM Tivoli Workload Scheduler 9.4/9.5
IBM Tivoli Workload Scheduler 9.4 and 9.5 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking.
local
low complexity
ibm CWE-787
5.3
2019-10-16 CVE-2019-4031 Unspecified vulnerability in IBM Tivoli Workload Scheduler
IBM Workload Scheduler Distributed 9.2, 9.3, 9.4, and 9.5 contains a vulnerability that could allow a local user to write files as root in the file system, which could allow the attacker to gain root privileges.
local
low complexity
ibm
7.8