Critical
CVSS: 9.8
IBM Standards Processing Engine 10.0.1.10 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe java deserialization. By sending specially crafted input, an attacker could exploit this vulnerability to e…
Medium
CVSS: 5.1
IBM Transformation Extender Advanced 10.0.1
could allow a local user to perform unauthorized actions due to improper access controls.
Medium
CVSS: 5.9
IBM Transformation Extender Advanced 10.0.1
does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.
Medium
CVSS: 6.3
IBM Transformation Extender Advanced 10.0.1
does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
Low
CVSS: 1.9
IBM Transformation Extender Advanced 10.0.1 stores potentially sensitive information in log files that could be read by a local user.