Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2021-04-27 CVE-2021-20448 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-04-27 CVE-2020-4981 Improper Input Validation vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation.
local
low complexity
ibm CWE-20
3.6
2021-04-27 CVE-2021-20549 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-04-26 CVE-2021-20546 Out-of-bounds Write vulnerability in IBM products
IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking.
local
low complexity
ibm CWE-787
2.1
2021-04-26 CVE-2021-20536 Information Exposure Through Log Files vulnerability in IBM Spectrum Protect Plus 10.1.6/10.1.7
IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive information in log files that could be read by a local user.
local
low complexity
ibm CWE-532
2.1
2021-04-09 CVE-2021-29671 Unspecified vulnerability in IBM Spectrum Scale 5.1.0.1
IBM Spectrum Scale 5.1.0.1 could allow a local attacker to bypass the filesystem audit logging mechanism when file audit logging is enabled.
local
ibm
1.9
2021-04-05 CVE-2020-4792 Cross-site Scripting vulnerability in IBM Edge Application Manager 4.2
IBM Edge 4.2 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-04-05 CVE-2020-4997 Cross-site Scripting vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20352 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20447 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5