Vulnerabilities > IBM > Infosphere Master Data Management Server > 11.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-03 | CVE-2017-1199 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.0, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. | 3.5 |
| 2017-07-31 | CVE-2016-9719 | Improper Input Validation vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.1. | 3.5 |
| 2017-07-31 | CVE-2016-9718 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.1. | 3.5 |
| 2017-07-31 | CVE-2016-9717 | Improper Input Validation vulnerability in IBM Infosphere Master Data Management Server HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. | 4.0 |
| 2017-07-31 | CVE-2016-9716 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.8 |
| 2017-07-31 | CVE-2016-9715 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. | 3.5 |
| 2017-07-31 | CVE-2016-9714 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.1, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.8 |
| 2017-07-19 | CVE-2017-1309 | Cleartext Storage of Sensitive Information vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 11.0 - 11.6 stores user credentials in plain in clear text which can be read by a local user. | 2.1 |
| 2015-06-02 | CVE-2015-1945 | Remote Privilege Escalation vulnerability in IBM InfoSphere Reference Data Management Unspecified vulnerability in the Reference Data Management component in IBM InfoSphere Master Data Management 10.1, 11.0, 11.3 before FP3, and 11.4 allows remote authenticated users to gain privileges via unknown vectors. | 6.5 |
| 2015-05-25 | CVE-2015-1910 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server 10.1/11.0/11.3 Cross-site scripting (XSS) vulnerability in the Reference Data Management component in the server in IBM InfoSphere Master Data Management (MDM) 10.1 before IF1, 11.0 before FP3, and 11.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. | 3.5 |