Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe

Filtered by product Marketing Platform

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-1920	1 Ibm	1 Marketing Platform	2019-10-09	5.5 MEDIUM	7.1 HIGH
IBM Marketing Platform 9.1.0, 9.1.2 and 10.1 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 152855.
CVE-2018-1424	1 Ibm	1 Marketing Platform	2019-10-09	5.5 MEDIUM	7.1 HIGH
IBM Marketing Platform 9.1.0, 9.1.2, and 10.1 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 139029.
CVE-2016-6112	1 Ibm	3 Distributed Marketing, Marketing Operations, Marketing Platform	2017-05-31	6.5 MEDIUM	8.8 HIGH
IBM Distributed Marketing and Marketing Platform 8.6, 9.0, 9.1, and 10.0 could allow an authenticated user to escalate their privileges and gain administrative permissions over the web application. IBM X-Force ID: 118282.
CVE-2016-0233	1 Ibm	1 Marketing Platform	2016-06-28	6.5 MEDIUM	8.8 HIGH
SQL injection vulnerability in IBM Marketing Platform 8.5.x, 8.6.x, and 9.x before 9.1.2.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.