Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2020-09-04 CVE-2020-4702 Cross-site Scripting vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 is vulnerable to stored cross-site scripting.
network
ibm CWE-79
3.5
3.5
2020-09-02 CVE-2020-4445 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2020-09-02 CVE-2020-4522 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2020-09-02 CVE-2020-4546 Cross-site Scripting vulnerability in IBM products
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2020-09-01 CVE-2012-3341 Cross-site Scripting vulnerability in IBM Infosphere Guardium
IBM InfoSphere Guardium 7.0, 8.0, 8.01, and 8.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input.
network
ibm CWE-79
3.5
3.5
2020-08-31 CVE-2020-4492 Argument Injection or Modification vulnerability in IBM Spectrum Scale
IBM Spectrum Scale V5.0.0.0 through V5.0.4.3 and V4.2.0.0 through V4.2.3.21 could allow a local attacker to cause a denial of service crashing the kernel by sending a subset of ioctls on the device with invalid arguments.
local
low complexity
ibm CWE-88
2.1
2.1
2020-08-28 CVE-2020-4591 Information Exposure vulnerability in IBM Spectrum Protect Server
IBM Spectrum Protect Server 8.1.0.000 through 8.1.10.000 could disclose sensitive information in nondefault settings due to occasionally not encrypting the second chunk of an object in an encrypted container pool.
local
ibm CWE-200
1.9
1.9
2020-08-26 CVE-2019-4695 Insecure Storage of Sensitive Information vulnerability in IBM Guardium Data Encryption 3.0.0.2
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-922
2.1
2.1
2020-08-26 CVE-2019-4691 Cross-site Scripting vulnerability in IBM products
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2020-08-26 CVE-2019-4693 Insufficiently Protected Credentials vulnerability in IBM products
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 stores user credentials in plain in clear text which can be read by a local privileged user.
local
low complexity
ibm CWE-522
2.1
2.1