Vulnerabilities > IBM > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-27 | CVE-2020-4855 | Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation products is vulnerable to cross-site scripting. | 3.5 |
| 2021-01-27 | CVE-2020-4865 | Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation products is vulnerable to cross-site scripting. | 3.5 |
| 2021-01-27 | CVE-2021-20357 | Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation products is vulnerable to cross-site scripting. | 3.5 |
| 2021-01-26 | CVE-2020-4889 | Unspecified vulnerability in IBM Spectrum Scale IBM Spectrum Scale 5.0.0 through 5.0.5.4 and 5.1.0 could allow a local user to poison log files which could impact support and development efforts. | 2.1 |
| 2021-01-21 | CVE-2020-4968 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Security Identity Governance and Intelligence 5.2.6 IBM Security Identity Governance and Intelligence 5.2.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 3.3 |
| 2021-01-20 | CVE-2020-4887 | Unspecified vulnerability in IBM AIX and Vios IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitrary files in any directory. | 2.1 |
| 2021-01-19 | CVE-2020-4871 | Information Exposure vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 allows web pages to be stored locally which can be read by another user on the system. | 2.1 |
| 2021-01-13 | CVE-2020-4602 | Insufficiently Protected Credentials vulnerability in IBM Security Guardium Insights 2.0.2 IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local user. | 2.1 |
| 2021-01-13 | CVE-2020-4604 | Cleartext Storage of Sensitive Information vulnerability in IBM Security Guardium Insights 2.0.2 IBM Security Guardium Insights 2.0.2 stores user credentials in plain in clear text which can be read by a local privileged user. | 2.1 |
| 2021-01-12 | CVE-2020-4838 | Cross-site Scripting vulnerability in IBM API Connect IBM API Connect 5.0.0.0 through 5.0.8.10 is vulnerable to stored cross-site scripting. | 3.5 |