Vulnerabilities > IBM > Engineering Requirements Management Doors > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-01 | CVE-2023-28525 | Unspecified vulnerability in IBM products IBM Engineering Requirements Management 9.7.2.7 is vulnerable to cross-site scripting. | 4.8 |
| 2024-03-01 | CVE-2023-28949 | Unspecified vulnerability in IBM products IBM Engineering Requirements Management DOORS 9.7.2.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.5 |
| 2024-03-01 | CVE-2023-50305 | Unspecified vulnerability in IBM products IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 5.1 |
| 2018-01-26 | CVE-2017-1567 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1563 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1545 | Unspecified vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 could allow an attacker with physical access to the system to log into the application using previously stored credentials. low complexity ibm | 6.8 |
| 2018-01-26 | CVE-2017-1540 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1532 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM DOORS 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1516 | Improper Input Validation vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker to hijack the clicking action of the victim. | 5.4 |
| 2018-01-26 | CVE-2017-1515 | Information Exposure vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 could allow an authenticated user to obtain sensitive information from HTTP internal server error responses. | 4.3 |