Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2019-04-02 CVE-2018-1623 Information Exposure vulnerability in IBM Security Privileged Identity Manager 2.1.1
IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-200
2.1
2.1
2019-04-02 CVE-2018-1874 Information Exposure vulnerability in IBM API Connect
IBM API Connect 5.0.0.0 through 5.0.8.5 could display highly sensitive information to an attacker with physical access to the system.
local
low complexity
ibm CWE-200
2.1
2.1
2019-04-02 CVE-2019-4093 Incorrect Permission Assignment for Critical Resource vulnerability in IBM Spectrum Protect 8.1.7
IBM Tivoli Storage Manager (IBM Spectrum Protect 8.1.7) could allow a user to restore files and directories using IBM Spectrum Prootect Client Web User Interface on Windows that they should not have access to due to incorrect file permissions.
local
low complexity
ibm microsoft CWE-732
3.6
3.6
2019-03-21 CVE-2018-1836 Cross-site Scripting vulnerability in IBM MQ
IBM WebSphere MQ 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.1.0.0, and 9.1.0.1 console is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2019-03-14 CVE-2018-1658 Improper Input Validation vulnerability in IBM Rational Collaborative Lifecycle Management
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerable to HTTP header injection, caused by improper validation of input.
network
ibm CWE-20
3.5
3.5
2019-03-14 CVE-2018-1688 Cross-site Scripting vulnerability in IBM products
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2019-03-14 CVE-2018-1759 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2019-03-14 CVE-2018-1761 Cross-site Scripting vulnerability in IBM Rational Team Concert
IBM Rational Team Concert 5.0 through 6.0.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2019-03-14 CVE-2018-1763 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2019-03-14 CVE-2018-1764 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5