Ibm Security Directory Integrator — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Security Directory Integrator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2022-33162 — CVSS 7.3 (high): IBM Security Directory Integrator 7.2.0 and Security Verify Directory Integrator 10.0.0 does not perform any authentication for…
CVE-2024-28772 — CVSS 6.8 (medium): IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 is vulnerable to stored cross-site scripting…
CVE-2024-28767 — CVSS 6.8 (medium): IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a remote authenticated attacker to execute…
CVE-2022-33165 — CVSS 6.8 (medium): IBM Security Directory Server 6.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a…
CVE-2024-28765 — CVSS 5.3 (medium): IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain…
CVE-2022-33161 — CVSS 5.3 (medium): IBM Security Directory Server 6.4.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable…
CVE-2022-32759 — CVSS 5.3 (medium): IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 uses insufficient session expiration which…
CVE-2024-28770 — CVSS 4.8 (medium): IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on…
CVE-2024-28771 — CVSS 4.8 (medium): IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on…
CVE-2022-33167 — CVSS 3.7 (low): IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could allow a remote attacker to obtain…
CVE-2024-28766 — CVSS 2.4 (low): IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about…