Vulnerabilities > IBM > Jazz Foundation > 7.0.2

DATE CVE VULNERABILITY TITLE RISK
2025-01-12 CVE-2021-29669 Cross-site Scripting vulnerability in IBM Jazz Foundation
IBM Jazz Foundation 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2025-01-03 CVE-2024-41780 Privacy Violation vulnerability in IBM Jazz Foundation 7.0.2/7.0.3/7.1.0
IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could could allow a physical user to obtain sensitive information due to not masking passwords during entry.
low complexity
ibm CWE-359
4.6
4.6
2025-01-03 CVE-2024-5591 Information Exposure Through an Error Message vulnerability in IBM Jazz Foundation 7.0.2/7.0.3/7.1.0
IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3
4.3
2024-11-25 CVE-2023-45181 Cross-site Scripting vulnerability in IBM Jazz Foundation
IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2022-05-11 CVE-2021-39059 Cross-site Scripting vulnerability in IBM Jazz Foundation
IBM Jazz Foundation (IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2) is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4