Vulnerabilities > IBM > Jazz FOR Service Management > 1.1.3.10

DATE CVE VULNERABILITY TITLE RISK
2021-09-23 CVE-2021-29905 Cross-site Scripting vulnerability in IBM Jazz for Service Management 1.1.3.10
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2021-09-23 CVE-2021-38877 Cross-site Scripting vulnerability in IBM Jazz for Service Management 1.1.3.10
IBM Jazz for Service Management 1.1.3.10 is vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2021-09-23 CVE-2021-29800 Cross-site Scripting vulnerability in IBM products
IBM Tivoli Netcool/OMNIbus_GUI and IBM Jazz for Service Management 1.1.3.10 is vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2021-09-21 CVE-2021-29831 XXE vulnerability in IBM products
IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm CWE-611
8.1
8.1