The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of IBM i

IBM Navigator for i: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of IBM Navigator for i, in order to run JavaScript code in the context of the web site...
1100085, CVE-2019-4450, VIGILANCE-VUL-30829
Samba: three vulnerabilities
An attacker can use several vulnerabilities of Samba...
1115703, CVE-2019-10218, CVE-2019-14833, CVE-2019-14847, DSA-2019-189, FEDORA-2019-460ad648e7, FEDORA-2019-57d43f3b58, FEDORA-2019-703e299870, openSUSE-SU-2019:2442-1, openSUSE-SU-2019:2458-1, SUSE-SU-2019:2866-1, SUSE-SU-2019:2868-1, SUSE-SU-2019:2875-1, SUSE-SU-2019:2890-1, SUSE-SU-2019:2893-1, Synology-SA-19:35, USN-4167-1, USN-4167-2, VIGILANCE-VUL-30736
Python: Cross Site Scripting via DocXMLRPCServer.py
An attacker can trigger a Cross Site Scripting via DocXMLRPCServer.py of Python, in order to run JavaScript code in the context of the web site...
1102875, CVE-2019-16935, openSUSE-SU-2019:2389-1, openSUSE-SU-2019:2393-1, openSUSE-SU-2019:2438-1, openSUSE-SU-2019:2453-1, SUSE-SU-2019:2748-1, SUSE-SU-2019:2748-2, SUSE-SU-2020:0114-1, USN-4151-1, USN-4151-2, VIGILANCE-VUL-30477
OpenSSL: information disclosure via PKCS7/CMS Padding Oracle
An attacker can bypass access restrictions to data via PKCS7/CMS Padding Oracle of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, CERTFR-2019-AVI-444, cpuoct2019, CVE-2019-1563, DLA-1932-1, DSA-2019-201, DSA-4539-1, DSA-4539-2, DSA-4539-3, DSA-4540-1, NTAP-20190919-0002, openSUSE-SU-2019:2158-1, openSUSE-SU-2019:2189-1, openSUSE-SU-2019:2268-1, openSUSE-SU-2019:2269-1, SSA:2019-254-03, STORM-2019-018, SUSE-SU-2019:14171-1, SUSE-SU-2019:14174-1, SUSE-SU-2019:2397-1, SUSE-SU-2019:2403-1, SUSE-SU-2019:2410-1, SUSE-SU-2019:2413-1, SUSE-SU-2019:2504-1, SUSE-SU-2019:2558-1, SUSE-SU-2019:2561-1, SUSE-SU-2020:0099-1, VIGILANCE-VUL-30293
OpenSSL: information disclosure via Fork Protection Low Random
An attacker can bypass access restrictions to data via Fork Protection Low Random of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, CERTFR-2019-AVI-444, cpuoct2019, CVE-2019-1549, DSA-4539-1, DSA-4539-2, DSA-4539-3, NTAP-20190919-0002, SUSE-SU-2020:0099-1, VIGILANCE-VUL-30292
OpenSSL: information disclosure via ECDSA Falls Back
An attacker can bypass access restrictions to data via ECDSA Falls Back of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, CERTFR-2019-AVI-444, cpuoct2019, CVE-2019-1547, DLA-1932-1, DSA-2019-201, DSA-4539-1, DSA-4539-2, DSA-4539-3, DSA-4540-1, NTAP-20190919-0002, openSUSE-SU-2019:2158-1, openSUSE-SU-2019:2189-1, openSUSE-SU-2019:2268-1, openSUSE-SU-2019:2269-1, SSA:2019-254-03, SUSE-SU-2019:14171-1, SUSE-SU-2019:14174-1, SUSE-SU-2019:2397-1, SUSE-SU-2019:2403-1, SUSE-SU-2019:2410-1, SUSE-SU-2019:2413-1, SUSE-SU-2019:2504-1, SUSE-SU-2019:2558-1, SUSE-SU-2019:2561-1, SUSE-SU-2020:0099-1, VIGILANCE-VUL-30291
Eclipse OpenJ9: buffer overflow via String.getBytes
An attacker can trigger a buffer overflow via String.getBytes() of Eclipse OpenJ9, in order to trigger a denial of service, and possibly to run code...
1087227, CVE-2019-11772, RHSA-2019:2585-01, RHSA-2019:2590-01, RHSA-2019:2592-01, SUSE-SU-2019:2291-1, SUSE-SU-2019:2371-1, VIGILANCE-VUL-30214
IBM i: privilege escalation via Db2 Mirror for i
An attacker can bypass restrictions via Db2 Mirror for i of IBM i, in order to escalate his privileges...
CVE-2019-4536, ibm11071586, VIGILANCE-VUL-30210
Eclipse OpenJ9: privilege escalation via Absolute RPATH
An attacker can bypass restrictions via Absolute RPATH of Eclipse OpenJ9, in order to escalate his privileges...
1072346, 1073908, 1087227, 1101261, 1108107, 1109829, 967217, CVE-2019-11771, ibm10964780, SUSE-SU-2019:14160-1, SUSE-SU-2019:14188-1, SUSE-SU-2019:2291-1, SUSE-SU-2019:2336-1, SUSE-SU-2019:2371-1, VIGILANCE-VUL-30137
IBM Java: privilege escalation via Absolute RPATH
An attacker can bypass restrictions via Absolute RPATH of IBM Java, in order to escalate his privileges...
1072346, 1073908, 1087227, 1101261, 1108107, 1109829, 967217, CVE-2019-4473, ibm10964780, SUSE-SU-2019:14160-1, SUSE-SU-2019:14188-1, SUSE-SU-2019:2291-1, SUSE-SU-2019:2336-1, SUSE-SU-2019:2371-1, VIGILANCE-VUL-30136
Our database contains other pages. You can request a free trial to read them.

Display information about IBM i: