Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-04 | CVE-2017-1331 | Cross-site Scripting vulnerability in IBM Content Navigator IBM Content Navigator 2.0.3 and 3.0.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-08-03 | CVE-2017-1504 | Unspecified vulnerability in IBM Websphere Application Server 9.0.0.4 IBM WebSphere Application Server version 9.0.0.4 could provide weaker than expected security after using the PasswordUtil command to enable AES password encryption. | 6.5 |
| 2017-08-03 | CVE-2017-1327 | Cross-site Scripting vulnerability in IBM Inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. | 6.1 |
| 2017-08-03 | CVE-2017-1199 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.0, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. | 5.4 |
| 2017-08-02 | CVE-2015-0194 | XXE vulnerability in IBM Sterling B2B Integrator and Sterling File Gateway XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote attackers to read arbitrary files via a crafted XML data. | 6.5 |
| 2017-08-02 | CVE-2014-8903 | Command Injection vulnerability in IBM Curam Social Program Management IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 before 6.0.4.5iFix10 and 6.0.5 before 6.0.5.6 allows remote authenticated users to load arbitrary Java classes via unspecified vectors. | 8.8 |
| 2017-08-02 | CVE-2017-1495 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in IBM Infosphere Information Server 11.3/11.5/9.1 IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a privileged user to cause a memory dump that could contain highly sensitive information including access credentials. | 4.9 |
| 2017-08-02 | CVE-2017-1468 | Unspecified vulnerability in IBM Infosphere Information Server 11.3/11.5/9.1 IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a local user to gain elevated privileges by placing arbitrary files in installation directories. | 7.8 |
| 2017-08-02 | CVE-2017-1467 | Unspecified vulnerability in IBM Infosphere Information Server 11.3/11.5/9.1 A network layer security vulnerability in InfoSphere Information Server 9.1, 11.3, and 11.5 can lead to privilege escalation or unauthorized access. | 8.1 |
| 2017-08-02 | CVE-2017-1383 | XXE vulnerability in IBM Infosphere Information Server 11.3/11.5/9.1 IBM InfoSphere Information Server 9.1, 11.3, and 11.5 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. | 9.1 |