Vulnerabilities > IBM > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-07 | CVE-2019-4207 | Unspecified vulnerability in IBM Tririga Application Platform 3.5.3.0/3.6.0.0 IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 may disclose sensitive information only available to a local user that could be used in further attacks against the system. | 3.3 |
| 2019-05-01 | CVE-2018-1933 | Cross-site Scripting vulnerability in IBM Planning Analytics IBM Planning Analytics 2.0 through 2.0.6 is vulnerable to cross-site scripting. | 3.5 |
| 2019-04-29 | CVE-2018-2004 | Cross-site Scripting vulnerability in IBM Jazz Reporting Service IBM Jazz Reporting Service (JRS) 6.0 through 6.0.6 is vulnerable to cross-site scripting. | 3.5 |
| 2019-04-25 | CVE-2019-4146 | Unspecified vulnerability in IBM Sterling B2B Integrator 6.0.0.0/6.0.0.1 IBM Sterling B2B Integrator Standard Edition 6.0.0.0 and 6.0.0.1 could allow an authenticated user to obtain sensitive document information under unusual circumstances. | 3.1 |
| 2019-04-08 | CVE-2018-1787 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM products IBM Spectrum Protect 7.1 and 8.1 is affected by a password exposure vulnerability caused by insecure file permissions. | 2.1 |
| 2019-04-08 | CVE-2018-1882 | Cleartext Storage of Sensitive Information vulnerability in IBM products In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. | 1.9 |
| 2019-04-08 | CVE-2018-1943 | Injection vulnerability in IBM Cloud Private 3.1.0/3.1.1 IBM Cloud Private 3.1.0 and 3.1.1 is vulnerable to HTTP HOST header injection, caused by improper validation of input. | 3.5 |
| 2019-04-08 | CVE-2019-4143 | Information Exposure Through Log Files vulnerability in IBM Cloud Private 3.1.1/3.1.2 The IBM Cloud Private Key Management Service (IBM Cloud Private 3.1.1 and 3.1.2) could allow a local user to obtain sensitive from the KMS plugin container log. | 2.1 |
| 2019-04-03 | CVE-2018-1731 | Cross-site Scripting vulnerability in IBM Doors Next Generation 5.0/6.0/6.0.2 IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. | 3.5 |
| 2019-04-03 | CVE-2018-1913 | Cross-site Scripting vulnerability in IBM Doors Next Generation IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. | 3.5 |