Medium Severity
IBM Security Bulletin: Financial Transaction Manager for Corporate Payment Services is affected by a potential directory listing of internal product files vulnerability (CVE-2018-2026)
Jan 22, 2019 9:01 am EST
Categorized: Medium Severity
Share this post:
IBM Financial Transaction Manager for Corporate Payment Services (FTM CPS) for Multi-Platform has addressed the following vulnerability. A potential directory listing vulnerability could allow an authenticated user to obtain a directory listing of internal product files.
CVE(s): CVE-2018-2026
Affected product(s) and affected version(s):
FTM CPS v3.2.1.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10795544
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155552
Security Bulletin: HTTP Header Vulnerability Affects IBM Sterling Connect:Direct Browser User Interface (CVE-2021-20560)
Jul 27, 2021 8:26 pm EDT | Medium Severity
There are issue with HTTP header 'X-Frame-Options' not present. IBM Sterling Connect:Direct Browser has addressed the applicable CVEs. ...read more
Security Bulletin: Information disclosure vulnerability in IBM i2 Analyze (CVE-2021-29766)
Jul 27, 2021 8:20 pm EDT | Medium Severity
In certain situations more information than is necessary is communicated via error messages or requests ...read more
Security Bulletin: i2 Analyse and Analyst's Notebook Premium have hyperlink clicking vulnerability (CVE-2021-29770)
Jul 27, 2021 8:15 pm EDT | Medium Severity
IBM i2 Analyse and Analyst's Notebook Premium are vulnerable to malicious hyperlinks in certain data fields ...read more