Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Entirex
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-02-06 | CVE-2024-56467 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | N/A | ||
| 2025-02-27 | CVE-2024-54169 | IBM EntireX 11.1 could allow an authenticated attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. | Entirex | 6.5 | ||
| 2025-02-27 | CVE-2024-54170 | IBM EntireX 11.1 could allow a local user to cause a denial of service due to use of a regular expression with an inefficient complexity that consumes excessive CPU cycles. | Entirex | 5.5 | ||
| 2025-02-27 | CVE-2024-56493 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 3.3 | ||
| 2025-02-27 | CVE-2024-56494 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 3.3 | ||
| 2025-02-27 | CVE-2024-56495 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 3.3 | ||
| 2025-02-27 | CVE-2024-56496 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 3.3 | ||
| 2025-02-27 | CVE-2024-56810 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 3.3 | ||
| 2025-02-27 | CVE-2024-56811 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 3.3 | ||
| 2025-02-27 | CVE-2024-56812 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system. | Entirex | 5.5 |