Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-19 | CVE-2018-1409 | Unspecified vulnerability in IBM Client Application Access and Notes IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. | 7.8 |
| 2018-02-14 | CVE-2017-1682 | Cross-site Scripting vulnerability in IBM Connections IBM Connections 4.0, 4.5, 5.0, 5.5, and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2018-02-14 | CVE-2017-1499 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM products IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker to include arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable Web server. | 8.8 |
| 2018-02-13 | CVE-2018-1383 | Unspecified vulnerability in IBM AIX A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. | 9.1 |
| 2018-02-13 | CVE-2017-1720 | Command Injection vulnerability in IBM Client Application Access and Notes IBM Notes 8.5 and 9.0 could allow a local attacker to execute arbitrary commands by carefully crafting a command line sent via the shared memory IPC. | 5.3 |
| 2018-02-13 | CVE-2017-1714 | Unspecified vulnerability in IBM Client Application Access and Notes IBM Notes and Domino NSD 8.5 and 9.0 could allow an authenticated local user without administrative privileges to gain System privilege. | 7.8 |
| 2018-02-13 | CVE-2017-1711 | Untrusted Search Path vulnerability in IBM Client Application Access and Notes IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp directory. | 7.8 |
| 2018-02-09 | CVE-2018-1401 | Cross-site Scripting vulnerability in IBM Websphere Portal 8.0.0.0/8.5.0.0/9.0.0.0 IBM WebSphere Portal 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. | 6.1 |
| 2018-02-09 | CVE-2018-1368 | Improper Privilege Management vulnerability in IBM Security Guardium Database Activity Monitor 9.0/9.1/9.5 IBM Security Guardium Database Activity Monitor 9.0, 9.1, and 9.5 could allow a local user with low privileges to view report pages and perform some actions that only an admin should be performing, so there is risk that someone not authorized can change things that they are not suppose to. | 4.4 |
| 2018-02-09 | CVE-2017-1761 | Cross-site Scripting vulnerability in IBM Websphere Portal IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. | 6.1 |