The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of IBM i

IBM i SQL: information disclosure
An attacker can bypass access restrictions to data of IBM i SQL, in order to obtain sensitive information...
6208661, CVE-2020-4345, VIGILANCE-VUL-32285
Apache httpd mod_rewrite: open redirect
An attacker can deceive the user of Apache httpd mod_rewrite, in order to redirect him to a malicious site...
6194883, 6224298, CERTFR-2020-AVI-183, CVE-2020-1927, openSUSE-SU-2020:0597-1, SUSE-SU-2020:1111-1, SUSE-SU-2020:1126-1, SUSE-SU-2020:1272-1, SYMSA16056, VIGILANCE-VUL-31923
Apache httpd mod_proxy_ftp: denial of service via FTP Backend
An attacker can trigger a fatal error via FTP Backend of Apache httpd mod_proxy_ftp, in order to trigger a denial of service...
6194883, 6224298, CERTFR-2020-AVI-183, CVE-2020-1934, openSUSE-SU-2020:0597-1, SUSE-SU-2020:1111-1, SUSE-SU-2020:1126-1, SUSE-SU-2020:1272-1, SUSE-SU-2020:14342-1, VIGILANCE-VUL-31922
Python: denial of service via urllib.request.AbstractBasicAuthHandler
An attacker can trigger a fatal error via urllib.request.AbstractBasicAuthHandler of Python, in order to trigger a denial of service...
6206164, 6206166, CVE-2020-8492, FEDORA-2020-6a88dad4a0, openSUSE-SU-2020:0274-1, SUSE-SU-2020:0467-1, SUSE-SU-2020:0510-1, SUSE-SU-2020:0557-1, SUSE-SU-2020:14306-1, USN-4333-1, USN-4333-2, VIGILANCE-VUL-31481
Eclipse OpenJ9: privilege escalation via Diagnostic Operations
An attacker can bypass restrictions via Diagnostic Operations of Eclipse OpenJ9, in order to escalate his privileges...
1288366, CVE-2019-17631, RHSA-2019:4113-01, RHSA-2019:4115-01, RHSA-2020:0046-01, SUSE-SU-2020:0001-1, SUSE-SU-2020:0024-1, VIGILANCE-VUL-31093
IBM Navigator for i: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of IBM Navigator for i, in order to run JavaScript code in the context of the web site...
1100085, CVE-2019-4450, VIGILANCE-VUL-30829
Samba: three vulnerabilities
An attacker can use several vulnerabilities of Samba...
1115703, CVE-2019-10218, CVE-2019-14833, CVE-2019-14847, DSA-2019-189, FEDORA-2019-460ad648e7, FEDORA-2019-57d43f3b58, FEDORA-2019-703e299870, openSUSE-SU-2019:2442-1, openSUSE-SU-2019:2458-1, RHSA-2020:1084-01, RHSA-2020:1878-01, SUSE-SU-2019:2866-1, SUSE-SU-2019:2868-1, SUSE-SU-2019:2875-1, SUSE-SU-2019:2890-1, SUSE-SU-2019:2893-1, Synology-SA-19:35, USN-4167-1, USN-4167-2, VIGILANCE-VUL-30736
Python urllib2: information disclosure via CRLF Injection Host Control Characters
An attacker can bypass access restrictions to data via CRLF Injection Host Control Characters of Python urllib2, in order to obtain sensitive information...
6206164, 6206166, CVE-2019-18348, openSUSE-SU-2020:0696-1, SUSE-SU-2020:0750-1, SUSE-SU-2020:1339-1, USN-4333-1, USN-4333-2, VIGILANCE-VUL-30709
Python: Cross Site Scripting via DocXMLRPCServer.py
An attacker can trigger a Cross Site Scripting via DocXMLRPCServer.py of Python, in order to run JavaScript code in the context of the web site...
1102875, CVE-2019-16935, openSUSE-SU-2019:2389-1, openSUSE-SU-2019:2393-1, openSUSE-SU-2019:2438-1, openSUSE-SU-2019:2453-1, openSUSE-SU-2020:0086-1, SUSE-SU-2019:2748-1, SUSE-SU-2019:2748-2, SUSE-SU-2020:0114-1, SUSE-SU-2020:0234-1, USN-4151-1, USN-4151-2, VIGILANCE-VUL-30477
OpenSSL: information disclosure via PKCS7/CMS Padding Oracle
An attacker can bypass access restrictions to data via PKCS7/CMS Padding Oracle of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, 3456663, 5695611, 5695629, 5695653, 5695851, 6199286, 6201879, CERTFR-2019-AVI-444, cpuapr2020, cpuoct2019, CVE-2019-1563, DLA-1932-1, DSA-2019-201, DSA-2020-062, DSA-4539-1, DSA-4539-2, DSA-4539-3, DSA-4540-1, NTAP-20190919-0002, openSUSE-SU-2019:2158-1, openSUSE-SU-2019:2189-1, openSUSE-SU-2019:2268-1, openSUSE-SU-2019:2269-1, RHSA-2020:1840-01, SSA:2019-254-03, STORM-2019-018, SUSE-SU-2019:14171-1, SUSE-SU-2019:14174-1, SUSE-SU-2019:2397-1, SUSE-SU-2019:2403-1, SUSE-SU-2019:2410-1, SUSE-SU-2019:2413-1, SUSE-SU-2019:2504-1, SUSE-SU-2019:2558-1, SUSE-SU-2019:2561-1, SUSE-SU-2020:0099-1, USN-4376-1, VIGILANCE-VUL-30293
Our database contains other pages. You can request a free trial to read them.

Display information about IBM i: