Computer vulnerabilities of IBM TSA

WebSphere AS: infinite loop via Admin Console
An attacker can trigger an infinite loop via Admin Console of WebSphere AS, in order to trigger a denial of service...
CVE-2019-4080, ibm10875692, ibm10880551, ibm10884894, VIGILANCE-VUL-28864

WebSphere AS: memory leak via Request Headers
An attacker can create a memory leak via Request Headers of WebSphere AS, in order to trigger a denial of service...
CVE-2019-4046, ibm10869570, ibm10878466, ibm10884082, ibm10884894, swg27048591, VIGILANCE-VUL-28809

WebSphere AS: privilege escalation via Spoof Connection Information
An attacker can bypass restrictions via Spoof Connection Information of WebSphere AS, in order to escalate his privileges...
CVE-2018-1902, ibm10795115, ibm10876438, ibm10877000, ibm10884082, swg27048591, VIGILANCE-VUL-28690

IBM Java: privilege escalation via RPATH
An attacker can bypass restrictions via RPATH of IBM Java, in order to escalate his privileges...
CVE-2018-1890, ibm10873042, ibm10875554, ibm10878234, ibm10878236, ibm10878376, ibm10882598, ibm10883400, ibm10885024, SUSE-SU-2019:0617-1, VIGILANCE-VUL-28666

WebSphere AS: Cross Site Scripting via Admin Console
An attacker can trigger a Cross Site Scripting via Admin Console of WebSphere AS, in order to run JavaScript code in the context of the web site...
CVE-2019-4030, ibm10869406, ibm10876436, ibm10876986, swg27048591, VIGILANCE-VUL-28651

WebSphere AS: information disclosure via TLS Configuration
An attacker can bypass access restrictions to data via TLS Configuration of WebSphere AS, in order to obtain sensitive information...
154650, CVE-2018-1996, ibm10793421, ibm10874404, ibm10876442, ibm10878821, swg27048591, VIGILANCE-VUL-28559

Oracle Java: vulnerabilities of January 2019
Several vulnerabilities were announced in Oracle products...
CERTFR-2019-AVI-022, cpujan2019, CVE-2019-2422, CVE-2019-2426, CVE-2019-2449, CVE-2019-2540, DLA-1732-1, DSA-2019-131, DSA-4410-1, FEDORA-2019-362387a66d, FEDORA-2019-3f9a71578d, FEDORA-2019-8f2b27efce, FEDORA-2019-96ac060af3, FEDORA-2019-b084fa3ea5, FEDORA-2019-d6717436ee, ibm10873042, ibm10875554, ibm10878234, ibm10878236, ibm10878376, ibm10882598, ibm10884286, ibm10884946, ibm10886063, NTAP-20190118-0001, openSUSE-SU-2019:0161-1, openSUSE-SU-2019:0346-1, openSUSE-SU-2019:1439-1, openSUSE-SU-2019:1500-1, RHSA-2019:0416-01, RHSA-2019:0435-01, RHSA-2019:0436-01, RHSA-2019:0462-01, RHSA-2019:0464-01, RHSA-2019:0469-01, RHSA-2019:0472-01, RHSA-2019:0473-01, RHSA-2019:0474-01, RHSA-2019:1238-01, SUSE-SU-2019:0221-1, SUSE-SU-2019:0574-1, SUSE-SU-2019:0604-1, SUSE-SU-2019:0617-1, SUSE-SU-2019:1219-1, SUSE-SU-2019:1392-1, SUSE-SU-2019:13975-1, SUSE-SU-2019:13978-1, SUSE-SU-2019:2028-1, SUSE-SU-2019:2291-1, SUSE-SU-2019:2371-1, USN-3875-1, USN-3942-1, USN-3949-1, VIGILANCE-VUL-28290, ZDI-19-033

WebSphere AS: code execution via Unserialized Object
An attacker can use a vulnerability via Unserialized Object of WebSphere AS, in order to run code...
CVE-2018-1904, ibm10738735, ibm10791781, ibm10793333, VIGILANCE-VUL-27996

WebSphere AS: Cross Site Request Forgery via Admin Console
An attacker can trigger a Cross Site Request Forgery via Admin Console of WebSphere AS, in order to force the victim to perform operations...
CVE-2018-1926, ibm10742301, ibm10791781, ibm10793329, VIGILANCE-VUL-27995

WebSphere AS: privilege escalation via Cached Value
An attacker can bypass restrictions via Cached Value of WebSphere AS, in order to escalate his privileges...
CVE-2018-1901, ibm10738727, ibm10793335, VIGILANCE-VUL-27994

Our database contains other pages. You can request a free trial to read them.

Display information about IBM TSA:

https://www.ibm.com/fr-fr/marketplace/ibm-system-automation-for-z-systems