Computer vulnerabilities of IBM Security Directory Server

WebSphere AS: information disclosure via Admin Console
An attacker can bypass access restrictions to data via Admin Console of WebSphere AS, in order to obtain sensitive information...
1289152, 2892021, 3380121, 3433641, CVE-2019-4670, VIGILANCE-VUL-31513

WebSphere AS: code execution via File Name
An attacker can use a vulnerability via File Name of WebSphere AS, in order to run code...
1288786, 2892021, 3380121, 3434301, CVE-2020-4163, VIGILANCE-VUL-31503

WebSphere AS: memory leak
An attacker can create a memory leak of WebSphere AS, in order to trigger a denial of service...
1285372, 2892021, 3380121, 3510741, CERTFR-2020-AVI-066, CVE-2019-4720, VIGILANCE-VUL-31477

IBM Security Directory Server: five vulnerabilities
An attacker can use several vulnerabilities of IBM Security Directory Server...
1077045, CVE-2019-4520, CVE-2019-4538, CVE-2019-4539, CVE-2019-4542, CVE-2019-4549, VIGILANCE-VUL-30503

WebSphere AS: information disclosure via Stack Trace
An attacker can bypass access restrictions to data via Stack Trace of WebSphere AS, in order to obtain sensitive information...
1079031, 3380121, 5695611, 5695629, 5695653, 5695851, 959023, CVE-2019-4441, VIGILANCE-VUL-30491

IBM WebSphere Application Server: information disclosure via Security Auditing
An attacker can bypass access restrictions to data via Security Auditing of IBM WebSphere Application Server, in order to obtain sensitive information...
1079031, 3380121, 960290, CVE-2019-4477, VIGILANCE-VUL-30343

WebSphere AS: directory traversal via Admin Console
An attacker can traverse directories via Admin Console of WebSphere AS, in order to read a file outside the service root path...
1079031, 1086399, 1086423, 1086459, 1086477, 1086483, 1106955, 1106967, 3380121, CVE-2019-4442, VIGILANCE-VUL-30280

IBM Java: privilege escalation via RPATH
An attacker can bypass restrictions via RPATH of IBM Java, in order to escalate his privileges...
CVE-2018-1890, ibm10873042, ibm10875554, ibm10878234, ibm10878236, ibm10878376, ibm10882598, ibm10883400, ibm10885024, SUSE-SU-2019:0617-1, VIGILANCE-VUL-28666

WebSphere AS: information disclosure via TLS Configuration
An attacker can bypass access restrictions to data via TLS Configuration of WebSphere AS, in order to obtain sensitive information...
154650, CVE-2018-1996, ibm10793421, ibm10874404, ibm10876442, ibm10878821, swg27048591, VIGILANCE-VUL-28559

WebSphere AS: Cross Site Scripting via Installation Verification Tool
An attacker can trigger a Cross Site Scripting via Installation Verification Tool of WebSphere AS, in order to run JavaScript code in the context of the web site...
CERTFR-2018-AVI-539, CERTFR-2018-AVI-544, CVE-2018-1643, ibm10716857, ibm10743909, ibm10794423, ibm10869322, VIGILANCE-VUL-27759

Our database contains other pages. You can request a free trial to read them.

Display information about IBM Security Directory Server:

https://www.ibm.com/support/knowledgecenter/SSVJJU_6.4.0/com.ibm.IBMDS.doc_6.4/c_po_SDS_overview.html