Vulnerabilities > IBM

DATE CVE VULNERABILITY TITLE RISK
2021-04-12 CVE-2021-20519 Cross-Site Scripting vulnerability in IBM products
IBM Jazz Team Server products are vulnerable to cross-site scripting.
network
ibm CWE-79
4.3
2021-04-12 CVE-2020-4965 Inadequate Encryption Strength vulnerability in IBM products
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-326
5.0
2021-04-12 CVE-2020-4964 Unspecified vulnerability in IBM products
IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized message on the application which could be used to phish other users.
network
low complexity
ibm
4.0
2021-04-12 CVE-2020-4920 Cross-Site Scripting vulnerability in IBM products
IBM Jazz Team Server products are vulnerable to stored cross-site scripting.
network
ibm CWE-79
4.3
2021-04-09 CVE-2021-29671 Incorrect Authorization vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.1.0.1 could allow a local attacker to bypass the filesystem audit logging mechanism when file audit logging is enabled.
local
ibm CWE-863
1.9
2021-04-08 CVE-2021-20480 Server-Side Request Forgery (SSRF) vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, and 8.5 is vulnerable to server-side request forgery (SSRF).
network
low complexity
ibm CWE-918
4.0
2021-04-05 CVE-2020-4997 Cross-Site Scripting vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-04-05 CVE-2020-4792 Cross-Site Scripting vulnerability in IBM Edge Application Manager 4.2
IBM Edge 4.2 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20520 Cross-Site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20518 Cross-Site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5