Vulnerabilities > IBM > Bigfix Platform > 9.2.17

DATE CVE VULNERABILITY TITLE RISK
2019-05-20 CVE-2019-4058 Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM Bigfix Platform
IBM BigFix Platform 9.2 and 9.5 could allow a low-privilege user to manipulate the UI into exposing interface elements and information normally restricted to administrators.
network
low complexity
ibm CWE-1021
6.5
6.5
2019-05-20 CVE-2019-4011 Cross-site Scripting vulnerability in IBM Bigfix Platform
IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2019-05-20 CVE-2018-2005 Information Exposure vulnerability in IBM Bigfix Platform
IBM BigFix Platform 9.2 and 9.5 stores potentially sensitive information in process memory that could be read by a local attacker with elevated permissions.
local
low complexity
ibm CWE-200
2.1
2.1