Vulnerabilities > IBM > Jazz Reporting Service > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-31 | CVE-2017-1370 | Information Exposure Through an Error Message vulnerability in IBM Jazz Reporting Service IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensitive information, including user credentials, through an error message from the Report Builder administrator configuration page. | 4.9 |
| 2017-07-05 | CVE-2017-1157 | Information Exposure vulnerability in IBM Jazz Reporting Service 5.0/6.0 IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could allow an authenticated attacker to access report data that should be restricted to authorized users. | 4.3 |
| 2017-07-05 | CVE-2017-1096 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-05 | CVE-2016-9989 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-05 | CVE-2016-9988 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-05 | CVE-2016-9987 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-05 | CVE-2016-9986 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-01 | CVE-2016-6054 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Foundation is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-01 | CVE-2016-6047 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service 6.0.2 IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-01 | CVE-2016-6039 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service 6.0/6.0.1/6.0.2 IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. | 5.4 |