Vulnerabilities > IBM > Infosphere Streams > 4.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-10 | CVE-2017-1431 | Cross-site Scripting vulnerability in IBM Infosphere Streams IBM InfoSphere Streams 4.0, 4.1, and 4.2 is vulnerable to cross-site scripting. | 3.5 |
| 2016-07-02 | CVE-2016-2867 | 7PK - Security Features vulnerability in IBM Infosphere Streams and Streams IBM InfoSphere Streams before 4.0.1.2 and IBM Streams before 4.1.1.1 do not properly implement the runAsUser feature, which allows local users to obtain root group privileges via unspecified vectors. | 6.9 |