Vulnerabilities > IBM > Rational Engineering Lifecycle Manager > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-01-27 CVE-2020-4865 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-27 CVE-2020-4855 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-27 CVE-2020-4547 Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM products
IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim.
network
low complexity
ibm CWE-1021
5.4
2021-01-27 CVE-2020-4524 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4733 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4697 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4691 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2021-01-08 CVE-2020-4544 Information Exposure Through an Error Message vulnerability in IBM products
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3
2021-01-08 CVE-2020-4487 Information Exposure Through an Error Message vulnerability in IBM products
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.3
2020-09-02 CVE-2020-4546 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4