Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-10 | CVE-2018-1407 | Cross-site Scripting vulnerability in IBM Rational Team Concert IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-09 | CVE-2013-3017 | Cryptographic Issues vulnerability in IBM Tivoli Application Dependency Discovery Manager IBM Tivoli Application Dependency Discovery Manager (TADDM) before 7.2.1.5 and 7.2.x before 7.2.2 make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging support for weak SSL ciphers. | 7.5 |
| 2018-07-09 | CVE-2013-3001 | Path Traversal vulnerability in IBM Infosphere Data Replication Dashboard 10.1/9.7 Directory traversal vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to read arbitrary files via unspecified vectors. | 7.5 |
| 2018-07-09 | CVE-2013-3000 | SQL Injection vulnerability in IBM Infosphere Data Replication Dashboard 10.1/9.7 SQL injection vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 9.8 |
| 2018-07-09 | CVE-2013-2999 | Cross-site Scripting vulnerability in IBM Infosphere Data Replication Dashboard 10.1/9.7 Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-07-09 | CVE-2018-1548 | Information Exposure vulnerability in IBM API Connect IBM API Connect 2018.1.0.0, 2018.2.1, 2018.2.2, 2018.2.3, and 2018.2.4 contains a vulnerability that could allow an authenticated user to obtain sensitive information. | 4.3 |
| 2018-07-06 | CVE-2018-1676 | Cross-site Scripting vulnerability in IBM Planning Analytics Local IBM Planning Analytics 2.0.0 through 2.0.4 is vulnerable to cross-site scripting. | 6.1 |
| 2018-07-06 | CVE-2018-1621 | Cleartext Storage of Sensitive Information vulnerability in IBM Websphere Application Server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local attacker to obtain clear text password in a trace file caused by improper handling of some datasource custom properties. | 6.7 |
| 2018-07-06 | CVE-2018-1556 | Cross-site Scripting vulnerability in IBM Content Foundation and Filenet Content Manager IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting. | 5.4 |
| 2018-07-06 | CVE-2018-1555 | Cross-site Scripting vulnerability in IBM Content Foundation and Filenet Content Manager IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting. | 5.4 |