Vulnerabilities > IBM > Engineering Requirements Management Doors Next

DATE CVE VULNERABILITY TITLE RISK
2021-04-12 CVE-2021-20519 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-04-12 CVE-2020-4965 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM products
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
2021-04-12 CVE-2020-4964 Unspecified vulnerability in IBM products
IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized message on the application which could be used to phish other users.
network
low complexity
ibm
4.3
2021-04-12 CVE-2020-4920 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server products are vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-27 CVE-2021-20357 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-27 CVE-2020-4865 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-27 CVE-2020-4855 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-27 CVE-2020-4547 Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM products
IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim.
network
low complexity
ibm CWE-1021
5.4
2021-01-27 CVE-2020-4524 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2020-09-02 CVE-2020-4546 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4