VYPR

Standards Processing Engine

by IBM

CVEs (2)

  • CVE-2021-29883MedOct 21, 2021
    risk 0.28cvss 4.3epss 0.01

    IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site…

  • CVE-2023-49886Oct 6, 2025
    risk 0.00cvss epss 0.01

    IBM Standards Processing Engine 10.0.1.10 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe java deserialization. By sending specially crafted input, an attacker could exploit this vulnerability to execute arbitrary code on the system.