Every CVE whose affected-product data names Ibm Applinx, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2025-36418 — CVSS 7.3 (high): IBM ApplinX 11.1 is vulnerable due to a privilege escalation vulnerability due to improper verification of JWT tokens. An attacker may be…
CVE-2025-36408 — CVSS 6.4 (medium): IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary…
CVE-2024-49791 — CVSS 6.4 (medium): IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code…
CVE-2024-49797 — CVSS 5.9 (medium): IBM ApplinX 11.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict…
CVE-2025-36409 — CVSS 5.4 (medium): IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code…
CVE-2024-49792 — CVSS 5.4 (medium): IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code…
CVE-2024-49796 — CVSS 5.4 (medium): IBM ApplinX 11.1 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web…
CVE-2024-49793 — CVSS 5.4 (medium): IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code…
CVE-2025-36419 — CVSS 5.3 (medium): IBM ApplinX 11.1 could disclose sensitive information about server architecture that could aid in further attacks against the system.
CVE-2024-49800 — CVSS 4.3 (medium): IBM ApplinX 11.1 stores sensitive information in cleartext in memory that could be obtained by an authenticated user.
CVE-2024-49798 — CVSS 4.3 (medium): IBM ApplinX 11.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the…
CVE-2024-49795 — CVSS 4.3 (medium): IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions…
CVE-2024-49794 — CVSS 4.3 (medium): IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions…
CVE-2025-36411 — CVSS 3.5 (low): IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions…
CVE-2025-36410 — CVSS 3.1 (low): IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side…