cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-49349,https://securityvulnerability.io/vulnerability/CVE-2024-49349,Stored Cross-Site Scripting in IBM Financial Transaction Manager for SWIFT Services,"The IBM Financial Transaction Manager for SWIFT Services versions 3.2.4.0 through 3.2.4.1 is susceptible to a stored cross-site scripting vulnerability. This issue permits authenticated users to inject arbitrary JavaScript code into the Web UI. Such exploitation can compromise the intended functionality of the application, leading to potential exposure of sensitive credentials during a trusted session. This vulnerability highlights the importance of implementing proper input validation and security measures to protect against such attacks.",IBM,Financial Transaction Manager For Swift Services For Multiplatforms,6.1,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-01-31T16:14:22.830Z,0
CVE-2024-49339,https://securityvulnerability.io/vulnerability/CVE-2024-49339,Stored Cross-Site Scripting Vulnerability in IBM Financial Transaction Manager for SWIFT Services,"IBM Financial Transaction Manager for SWIFT Services versions 3.2.4.0 to 3.2.4.1 contain a vulnerability that enables authenticated users to inject arbitrary JavaScript code into the web interface. This can lead to unintended alterations in the application's functionality, potentially compromising sensitive user credentials during trusted sessions. It is crucial for users and administrators to patch their systems to mitigate risks associated with this vulnerability and protect against possible exploitation.",IBM,Financial Transaction Manager For Swift Services For Multiplatforms,6.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-01-31T16:13:39.941Z,0
CVE-2023-49880,https://securityvulnerability.io/vulnerability/CVE-2023-49880,IBM Financial Transaction Manager for SWIFT Services data manipulation,The Message Entry and Repair (MER) facility within IBM Financial Transaction Manager for SWIFT Services version 3.2.4 has a vulnerability that allows an attacker to alter the sending address and message type of FIN messages. This ability to modify critical elements of business transactions poses a significant risk to the integrity of financial operations and data security. Proper safeguards should be implemented to prevent unauthorized modifications to transaction details.,IBM,Financial Transaction Manager for SWIFT Services,7.5,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2023-12-25T03:15:00.000Z,0
CVE-2023-35892,https://securityvulnerability.io/vulnerability/CVE-2023-35892,IBM Financial Transaction Manager for SWIFT Services XML external entity injection,"IBM Financial Transaction Manager for SWIFT Services version 3.2.4 is susceptible to an XML External Entity Injection (XXE) vulnerability. This issue arises when the application processes XML data, allowing a remote attacker to exploit the vulnerability to potentially expose sensitive information or exhaust system memory resources, compromising the integrity and confidentiality of the related transactions.",IBM,Financial Transaction Manager For Swift Services,7.1,HIGH,0.0014299999456852674,false,,false,false,false,,,false,false,,2023-09-05T00:15:00.000Z,0
CVE-2022-43871,https://securityvulnerability.io/vulnerability/CVE-2022-43871,IBM Financial Transaction Manager for SWIFT Services cross-site scripting,IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  IBM X-Force ID:  239707.,IBM,Financial Transaction Manager For Swift Services,4.6,MEDIUM,0.0005099999834783375,false,,false,false,false,,,false,false,,2023-04-29T02:42:10.334Z,0
CVE-2022-43875,https://securityvulnerability.io/vulnerability/CVE-2022-43875,IBM Financial Transaction Manager for SWIFT Services for Multiplatforms denial of service,"IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow an authenticated user to lock additional RM authorizations, resulting in a denial of service on displaying or managing these authorizations.  IBM X-Force ID:  240034.",IBM,Financial Transaction Manager For Swift Services For Multiplatforms,6.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-12-20T18:45:03.076Z,0