Vulnerabilidades em IBM Corporation

288 resultados

CVE-2016-5939—IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow theEPSS 0.8%CVE-2016-6020—IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By peEPSS 0.8%CVE-2016-5979—IBM Distributed Marketing 8.6, 9.0, and 10.0 could allow a privileged authenticated user to create an instance that gets created with securiEPSS 0.8%CVE-2016-3018—IBM Security Access Manager for Web is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript codEPSS 0.8%CVE-2016-2987—An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacker.EPSS 0.8%CVE-2016-6028—IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.EPSS 0.8%CVE-2017-1141—IBM Insights Foundation for Energy 1.0, 1.5, and 1.6 could allow an authenticated user to obtain sensitive information from error messages. EPSS 0.8%CVE-2016-6122—IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 discloses answers to security questions in a response to authenticated users.EPSS 0.8%CVE-2016-9729—IBM QRadar 7.2 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protecteEPSS 0.8%CVE-2016-8924—IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate aEPSS 0.8%CVE-2016-9010—IBM WebSphere Message Broker 9.0 and 10.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim EPSS 0.8%CVE-2016-5935—IBM Jazz for Service Management could allow a remote attacker to obtain sensitive information, caused by the failure to properly validate thEPSS 0.7%CVE-2017-1180—The IBM TRIRIGA Document Manager contains a vulnerability that could allow an authenticated user to execute actions they did not have accessEPSS 0.7%CVE-2016-8999—IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks EPSS 0.7%CVE-2016-5880—IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus alteEPSS 0.7%CVE-2016-8922—Exphox WebRadar is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thusEPSS 0.7%CVE-2016-6000—IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code iEPSS 0.7%CVE-2016-8936—IBM Social Rendering Templates for Digital Data Connector is vulnerable to cross-site scripting. This vulnerability allows users to embed arEPSS 0.7%CVE-2016-6062—IBM Resilient v26.0, v26.1, and v26.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cEPSS 0.7%CVE-2016-2924—IBM Infosphere BigInsights is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker coEPSS 0.7%

← anteriorpágina 8 / 15próxima →