IBM DataPower Gateway 7.0.0.17

CPE Details

IBM DataPower Gateway 7.0.0.17
ibm
datapower_gateway
7.0.0.17
2019-10-16
11h18 +00:00
2019-10-16
11h18 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:ibm:datapower_gateway:7.0.0.17:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

datapower_gateway

Version

7.0.0.17

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2017-1591 2017-09-27 17h00 +00:00 IBM WebSphere DataPower Appliances 7.0.0 through 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 132368.
6.1
Moyen
CVE-2015-7412 2015-11-08 21h00 +00:00 The GatewayScript modules on IBM DataPower Gateways with software 7.2.0.x before 7.2.0.1, when the GatewayScript decryption API or a JWE decrypt action is enabled, do not require signed ciphertext data, which makes it easier for remote attackers to obtain plaintext data via a padding-oracle attack.
2.6