Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2021-03-30 CVE-2021-20503 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20504 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20506 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20518 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2021-20520 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation Products are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2021-03-30 CVE-2020-4884 Cleartext Storage of Sensitive Information vulnerability in IBM Urbancode Deploy 6.2.7.9/7.0.5.4/7.1.1.1
IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 stores user credentials in plain in clear text which can be read by a local user.
local
low complexity
ibm CWE-312
2.1
2021-03-30 CVE-2020-4944 Cleartext Storage of Sensitive Information vulnerability in IBM Urbancode Deploy
IBM UrbanCode Deploy (UCD) 7.0.3.0, 7.0.4.0, 7.0.5.3, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2, stores keystore passwords in plain text after a manual edit, which can be read by a local user.
local
low complexity
ibm CWE-312
2.1
2021-03-16 CVE-2020-4851 Injection vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user to poison log files which could impact support and development efforts.
local
low complexity
ibm CWE-74
2.1
2021-03-16 CVE-2020-4890 Unspecified vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user with a valid role to the REST API to cause a denial of service due to weak or absense of rate limiting.
local
low complexity
ibm
2.1
2021-03-16 CVE-2020-4891 Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 uses an inadequate account lockout setting that could allow a local user er to brute force Rest API account credentials.
local
low complexity
ibm CWE-307
2.1