Vulnerabilities > IBM > Engineering Test Management > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-01-27 CVE-2020-4524 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4733 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4697 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4691 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4544 Information Exposure Through an Error Message vulnerability in IBM products
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3
2021-01-08 CVE-2020-4487 Information Exposure Through an Error Message vulnerability in IBM products
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3
2020-09-02 CVE-2020-4546 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2020-09-02 CVE-2020-4522 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2020-09-02 CVE-2020-4445 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2020-08-04 CVE-2020-4410 Unspecified vulnerability in IBM products
IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to send a specially crafted HTTP GET request to read attachments on the server that they should not have access to.
network
low complexity
ibm
4.3