Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-01 | CVE-2016-6123 | Cross-site Scripting vulnerability in IBM Kenexa LMS on Cloud IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-01 | CVE-2016-6122 | Information Exposure vulnerability in IBM Kenexa LMS on Cloud IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 discloses answers to security questions in a response to authenticated users. | 4.3 |
| 2017-02-01 | CVE-2016-6113 | Cross-site Scripting vulnerability in IBM Domino and Inotes IBM Verse is vulnerable to cross-site scripting. | 6.1 |
| 2017-02-01 | CVE-2016-6090 | Unspecified vulnerability in IBM Websphere Commerce IBM WebSphere Commerce contains an unspecified vulnerability that could allow disclosure of user personal data, performing of unauthorized administrative operations, and potentially causing a denial of service. | 9.8 |
| 2017-02-01 | CVE-2016-6085 | Improper Access Control vulnerability in IBM Bigfix Platform IBM BigFix Platform could allow an attacker on the local network to crash the BES and relay servers. | 6.5 |
| 2017-02-01 | CVE-2016-6084 | Improper Input Validation vulnerability in IBM Bigfix Platform 9.0/9.1 IBM BigFix Platform could allow an attacker on the local network to crash the BES server using a specially crafted XMLSchema request. | 6.5 |
| 2017-02-01 | CVE-2016-6082 | Use After Free vulnerability in IBM Bigfix Platform IBM BigFix Platform could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free race condition. | 10.0 |
| 2017-02-01 | CVE-2016-6080 | Information Exposure vulnerability in IBM Websphere Message Broker 8.0 The WebAdmin context for WebSphere Message Broker allows directory listings which could disclose sensitive information to the attacker. | 5.3 |
| 2017-02-01 | CVE-2016-6072 | Cross-site Scripting vulnerability in IBM products IBM Maximo Asset Management is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-01 | CVE-2016-6065 | OS Command Injection vulnerability in IBM Security Guardium IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject commands that would be executed as root. | 7.8 |