Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2021-06-16 CVE-2021-20488 Unspecified vulnerability in IBM Security Identity Manager 6.0.2
IBM Security Identity Manager 6.0.2 could allow an authenticated malicious user to change the passwords of other users in the Windows AD environment when IBM Security Identity Manager Windows Password Synch Plug-in is deployed and configured.
network
ibm
3.5
2021-06-11 CVE-2021-20396 Insecure Storage of Sensitive Information vulnerability in IBM Security Qradar Analyst Workflow
IBM QRadar Analyst Workflow App 1.0 through 1.18.0 for IBM QRadar SIEM allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-922
2.1
2021-06-02 CVE-2021-29670 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-06-02 CVE-2021-29668 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-06-02 CVE-2021-20338 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-06-02 CVE-2020-5030 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-06-02 CVE-2020-4977 Cross-site Scripting vulnerability in IBM products
IBM Engineering Lifecycle Optimization - Publishing is vulnerable to stored cross-site scripting.
network
ibm CWE-79
3.5
2021-06-01 CVE-2021-20575 Insecure Storage of Sensitive Information vulnerability in IBM Application Gateway and Security Verify Access
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-922
2.1
2021-06-01 CVE-2020-4354 Cross-site Scripting vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripting.
network
ibm netapp CWE-79
3.5
2021-06-01 CVE-2019-4653 Cross-site Scripting vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripting.
network
ibm netapp CWE-79
3.5