Vulnerabilities > IBM > Infosphere Biginsights > 4.2.0

DATE CVE VULNERABILITY TITLE RISK
2017-12-07 CVE-2017-1336 Code Injection vulnerability in IBM Infosphere Biginsights 4.2.0
IBM Infosphere BigInsights 4.2.0 could allow an attacker to inject code that could allow access to restricted data and files.
network
high complexity
ibm CWE-94
4.4
4.4
2017-11-01 CVE-2017-1554 Cross-site Scripting vulnerability in IBM Infosphere Biginsights 4.2.0/4.2.5
IBM Infosphere BigInsights 4.2.0 and 4.2.5 could allow a remote attacker to hijack the clicking action of the victim.
network
low complexity
ibm CWE-79
5.4
5.4
2017-11-01 CVE-2017-1553 Cross-site Scripting vulnerability in IBM Infosphere Biginsights 4.2.0/4.2.5
IBM Infosphere BigInsights 4.2.0 and 4.2.5 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-11-01 CVE-2017-1552 Cross-site Scripting vulnerability in IBM Infosphere Biginsights 4.2.0/4.2.5
IBM Infosphere BigInsights 4.2.0 and 4.2.5 is vulnerable to link injection.
network
low complexity
ibm CWE-79
5.4
5.4