Vulnerabilities > IBM

DATE CVE VULNERABILITY TITLE RISK
2017-12-07 CVE-2017-1487 Information Exposure vulnerability in IBM Sterling File Gateway 2.2
IBM Sterling File Gateway 2.2 could allow an authenticated attacker to obtain sensitive information such as login ids on the system.
network
low complexity
ibm CWE-200
6.5
6.5
2017-12-07 CVE-2017-1482 Cross-site Scripting vulnerability in IBM Sterling B2B Integrator 5.2
IBM Sterling B2B Integrator Standard Edition 5.2 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-12-07 CVE-2017-1481 Information Exposure vulnerability in IBM Sterling B2B Integrator 5.2
IBM Sterling B2B Integrator Standard Edition 5.2 allows a user to view sensitive information that belongs to another user.
network
low complexity
ibm CWE-200
4.3
4.3
2017-12-07 CVE-2017-1465 Cross-site Scripting vulnerability in IBM Tririga Application Platform
IBM TRIRIGA 3.2, 3.3, 3.4, and 3.5 could allow a remote attacker to hijack the clicking action of the victim.
network
low complexity
ibm CWE-79
5.4
5.4
2017-12-07 CVE-2017-1433 Unspecified vulnerability in IBM Websphere MQ
IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow an authenticated user to insert messages with a corrupt RFH header into the channel which would cause it to restart.
network
low complexity
ibm
6.5
6.5
2017-12-07 CVE-2017-1356 SQL Injection vulnerability in IBM Atlas Ediscovery Process Management
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to SQL injection.
network
low complexity
ibm CWE-89
8.8
8.8
2017-12-07 CVE-2017-1355 Information Exposure vulnerability in IBM Atlas Ediscovery Process Management
IBM Atlas eDiscovery Process Management 6.0.3 stores sensitive information in URL parameters.
network
high complexity
ibm CWE-200
3.7
3.7
2017-12-07 CVE-2017-1354 Cross-site Scripting vulnerability in IBM Atlas Ediscovery Process Management
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-12-07 CVE-2017-1353 Information Exposure vulnerability in IBM Atlas Ediscovery Process Management
IBM Atlas eDiscovery Process Management 6.0.3 could allow an authenticated attacker to obtain sensitive information when an unsuspecting user clicks on unsafe third-party links.
network
low complexity
ibm CWE-200
3.5
3.5
2017-12-07 CVE-2017-1342 Information Exposure vulnerability in IBM Insights Foundation for Energy 2.0
IBM Insights Foundation for Energy 2.0 could reveal sensitive information in error messages to authenticated users that could e used to conduct further attacks.
network
low complexity
ibm CWE-200
4.3
4.3