Vulnerabilities > IBM > Infosphere Information Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-08 | CVE-2015-7493 | Information Exposure vulnerability in IBM Infosphere Information Server IBM InfoSphere Information Server could allow a local user under special circumstances to execute commands during installation processes that could expose sensitive information. | 4.7 |
| 2017-02-01 | CVE-2016-8999 | Cross-site Scripting vulnerability in IBM products IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks mode thereby facilitating an attacker to inject malicious CSS. | 5.4 |
| 2017-02-01 | CVE-2016-5994 | Information Exposure vulnerability in IBM Infosphere Information Server 11.5 IBM InfoSphere Information Server contains a vulnerability that would allow an authenticated user to browse any file on the engine tier, and examine its contents. | 6.5 |
| 2017-02-01 | CVE-2016-5984 | Cross-site Scripting vulnerability in IBM products IBM InfoSphere Information Server is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. | 6.1 |