Vulnerabilities > IBM > Pureapplication System > 2.2.3.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-26 | CVE-2019-4241 | Unspecified vulnerability in IBM Pureapplication System IBM PureApplication System 2.2.3.0 through 2.2.5.3 could allow an authenticated user with local access to bypass authentication and obtain administrative access. | 7.8 |
| 2019-06-26 | CVE-2019-4235 | Weak Password Requirements vulnerability in IBM Pureapplication System IBM PureApplication System 2.2.3.0 through 2.2.5.3 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. | 7.5 |
| 2019-06-26 | CVE-2019-4234 | Unspecified vulnerability in IBM Pureapplication System IBM PureApplication System 2.2.3.0 through 2.2.5.3 weakness in the implementation of locking feature in pattern editor. | 4.3 |
| 2019-06-26 | CVE-2019-4225 | Information Exposure Through Log Files vulnerability in IBM Pureapplication System IBM PureApplication System 2.2.3.0 through 2.2.5.3 stores potentially sensitive information in log files that could be read by a local user. | 4.4 |
| 2019-06-26 | CVE-2019-4224 | SQL Injection vulnerability in IBM Pureapplication System IBM PureApplication System 2.2.3.0 through 2.2.5.3 is vulnerable to SQL injection. | 8.8 |