cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-29883,https://securityvulnerability.io/vulnerability/CVE-2021-29883,Unauthorized Access Risk in IBM Transformation Extender Advanced Products,"A vulnerability in IBM Transformation Extender Advanced allows for the potential exposure of session cookies and authorization tokens. Due to the absence of secure attributes on these cookies, attackers could exploit this vulnerability by tricking users into clicking on malicious links. Such links may direct users to insecure HTTP sites, thereby causing the session information to be transmitted in a non-secure manner. Attackers can intercept this information during transmission, leading to unauthorized access and exploitation of user sessions.",IBM,Transformation Extender Advanced,4.3,MEDIUM,0.0007999999797903001,false,,false,false,false,,,false,false,,2021-10-21T17:15:00.000Z,0
CVE-2017-1758,https://securityvulnerability.io/vulnerability/CVE-2017-1758,,"IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Advanced 9.0) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 135859.",IBM,"Control Center,Financial Transaction Manager,Transformation Extender Advanced",7.1,HIGH,0.0014799999771639705,false,,false,false,false,,,false,false,,2018-02-21T21:29:00.000Z,0