Every CVE whose affected-product data names Ibm Entirex, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2024-54171 — CVSS 7.1 (high): IBM EntireX 11.1 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. An authenticated attacker could…
CVE-2024-54169 — CVSS 6.5 (medium): IBM EntireX 11.1 could allow an authenticated attacker to traverse directories on the system. An attacker could send a specially crafted…
CVE-2024-54170 — CVSS 5.5 (medium): IBM EntireX 11.1 could allow a local user to cause a denial of service due to use of a regular expression with an inefficient complexity…
CVE-2025-0158 — CVSS 5.5 (medium): IBM EntireX 11.1 could allow a local user to cause a denial of service due to an unhandled error and fault isolation.
CVE-2024-56495 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2024-56496 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2024-56810 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2024-56811 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2024-56812 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2025-0759 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to unintentionally modify data timestamp integrity due to improper shared resource…
CVE-2024-56467 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2024-56493 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…
CVE-2024-56494 — CVSS 3.3 (low): IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This…