Skip to main content

Security Directory Integrator

5 CVEs product

Monthly

CVE-2024-28771 MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator Security Verify Directory Integrator
NVD
CVSS 3.1
4.8
EPSS
0.0%
CVE-2024-28770 MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator Security Verify Directory Integrator
NVD
CVSS 3.1
4.8
EPSS
0.0%
CVE-2024-28766 LOW Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about directory contents that could aid in further attacks against the. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Security Directory Integrator Security Verify Directory Integrator
NVD
CVSS 3.1
2.4
EPSS
0.1%
CVE-2024-28767 HIGH This Week

IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Command Injection Security Directory Integrator
NVD
CVSS 3.1
8.8
EPSS
0.6%
CVE-2024-28772 MEDIUM This Month

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 is vulnerable to stored cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM XSS Security Directory Integrator Security Directory Server Security Verify Access
NVD
CVSS 3.1
5.4
EPSS
0.3%
EPSS 0% CVSS 4.8
MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator +1
NVD
EPSS 0% CVSS 4.8
MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator +1
NVD
EPSS 0% CVSS 2.4
LOW Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about directory contents that could aid in further attacks against the. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Security Directory Integrator +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Command Injection Security Directory Integrator
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 is vulnerable to stored cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM XSS Security Directory Integrator +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy