Vulnerabilities > IBM > Platform Symphony > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-10-11 CVE-2018-1708 Information Exposure vulnerability in IBM Platform Symphony and Specturm Symphony
IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow an authenticated user to obtain sensitive user information such as passwords through the WebUI.
network
low complexity
ibm CWE-200
6.5
6.5
2018-09-28 CVE-2018-1704 Open Redirect vulnerability in IBM Platform Symphony and Spectrum Symphony
IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow a remote attacker to conduct phishing attacks, using an open redirect attack.
network
low complexity
ibm CWE-601
5.4
5.4
2018-08-28 CVE-2018-1705 Information Exposure vulnerability in IBM Platform Symphony and Spectrum Symphony
IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum Symphony 7.1.2 and 7.2.0.2 contain an information disclosure vulnerability that could allow an authenticated attacker to obtain highly sensitive information.
network
low complexity
ibm CWE-200
6.5
6.5