Vulnerabilities > IBM > Infosphere Master Data Management Server

DATE CVE VULNERABILITY TITLE RISK
2021-07-16 CVE-2020-4675 Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Master Data Management Server 11.6
IBM InfoSphere Master Data Management Server 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
6.5
6.5
2017-08-03 CVE-2017-1199 Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 10.0, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-31 CVE-2016-9719 Improper Input Validation vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 10.1.
network
low complexity
ibm CWE-20
5.7
5.7
2017-07-31 CVE-2016-9718 Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 10.1.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-31 CVE-2016-9717 Improper Input Validation vulnerability in IBM Infosphere Master Data Management Server
HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1.
network
low complexity
ibm CWE-20
6.5
6.5
2017-07-31 CVE-2016-9716 Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
8.8
2017-07-31 CVE-2016-9715 Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-31 CVE-2016-9714 Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 10.1, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
8.8
2017-07-19 CVE-2017-1309 Cleartext Storage of Sensitive Information vulnerability in IBM Infosphere Master Data Management Server
IBM InfoSphere Master Data Management Server 11.0 - 11.6 stores user credentials in plain in clear text which can be read by a local user.
local
low complexity
ibm CWE-312
7.8
7.8