Skip to main content
CVE-2015-5005 HIGH This Week

CSPOC in IBM PowerHA SystemMirror on AIX 6.1 and 7.1 allows remote authenticated users to perform an "su root" action by leveraging presence on the cluster-wide password-change list. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM Privilege Escalation Powerha System Mirror
NVD
CVSS 2.0
8.5
EPSS
1.3%
CVE-2015-4963 HIGH This Week

IBM Security Access Manager for Web 7.x before 7.0.0.16 and 8.x before 8.0.1.3 mishandles WebSEAL HTTPTransformation requests, which allows remote attackers to read or write to arbitrary files via. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Information Disclosure Security Access Manager For Web
NVD
CVSS 2.0
7.5
EPSS
0.8%
CVE-2015-5043 HIGH This Week

diag in IBM Security Guardium 8.2 before p6015, 9.0 before p6015, 9.1, 9.5, and 10.0 before p6015 allows local users to obtain root access via unspecified key sequences. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

IBM Privilege Escalation Security Guardium
NVD
CVSS 2.0
7.2
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy