Vulnerabilities > IBM > Cloud Orchestrator > 2.3.0.1

DATE CVE VULNERABILITY TITLE RISK
2018-08-30 CVE-2016-0205 Information Exposure vulnerability in IBM Cloud Orchestrator
A vulnerability has been identified in IBM Cloud Orchestrator 2.3, 2.3.0.1, 2.4, and 2.4.0.1 that could allow an attacker after authentication to enumerate valid users of the system.
local
low complexity
ibm CWE-200
3.3
3.3
2017-02-08 CVE-2016-0206 Improper Input Validation vulnerability in IBM Cloud Orchestrator
IBM Cloud Orchestrator could allow a local authenticated attacker to cause the server to slow down for a short period of time by using a specially crafted and malformed URL.
local
low complexity
ibm CWE-20
3.3
3.3
2017-02-08 CVE-2016-0202 Information Exposure vulnerability in IBM Cloud Orchestrator
A vulnerability has been identified in tasks, backend object generated for handling any action performed by the application in IBM Cloud Orchestrator.
local
low complexity
ibm CWE-200
3.3
3.3