CPE-0FF3FAD0-B235-4967-BC1D-33A173AE5AD1 Détail

CPE Details

IBM Financial Transaction Manager 3.2.4 for CPS Services

Vendor

ibm

Product

financial_transaction_manager

Version

3.2.4

Created

2020-12-22
13h54 +00:00

Modifié

2021-06-07
11h20 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:ibm:financial_transaction_manager:3.2.4:::::cps_services::

Informations

Vendor

ibm

Product

financial_transaction_manager

Version

3.2.4

Target Software

cps_services

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2020-5002	2023-03-01 21h16 +00:00	IBM Financial Transaction Manager 3.2.0 through 3.2.10 could allow an authenticated user to perform unauthorized actions due to improper validation. IBM X-Force ID: 192954.	8.8	Haute
CVE-2020-5001	2023-03-01 21h10 +00:00	IBM Financial Transaction Manager 3.2.0 through 3.2.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 192953.	7.5	Haute
CVE-2019-4575	2022-06-15 15h40 +00:00	IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.9 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 166801.	9.8	Critique
CVE-2021-39066	2022-02-02 12h04 +00:00	IBM Financial Transaction Manager 3.2.4 does not invalidate session any existing session identifier gives an attacker the opportunity to steal authenticated sessions. IBM X-Force ID: 215040.	8.8	Haute
CVE-2021-39044	2022-02-02 12h04 +00:00	IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 214210.	8.8	Haute
CVE-2020-5000	2021-06-15 19h11 +00:00	IBM Financial Transaction Manager 3.2.0 through 3.2.8 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192952.	5.4	Moyen
CVE-2020-4555	2020-12-21 17h50 +00:00	IBM Financial Transaction Manager 3.0.6 and 3.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 183328.	5.4	Moyen

IBM Financial Transaction Manager 3.2.4 for CPS Services

CPE Details

CPE Name: cpe:2.3:a:ibm:financial_transaction_manager:3.2.4:*:*:*:*:cps_services:*:*

Informations

Vendor

Product

Version

Target Software

Related CVE

CPE Name: cpe:2.3:a:ibm:financial_transaction_manager:3.2.4:::::cps_services::