Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2022-04-22 CVE-2021-38903 Cross-site Scripting vulnerability in multiple products
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.1.7 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input.
network
ibm netapp CWE-79
3.5
2022-04-21 CVE-2022-22436 Cross-site Scripting vulnerability in IBM Maximo Asset Management 7.6.1.2
IBM Maximo Asset Management 7.6.1.2 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2022-04-21 CVE-2022-22435 Cross-site Scripting vulnerability in IBM Maximo Asset Management 7.6.1.2
IBM Maximo Asset Management 7.6.1.2 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2022-04-19 CVE-2021-39078 Cleartext Storage of Sensitive Information vulnerability in IBM Security Guardium 10.5
IBM Security Guardium 10.5 stores user credentials in plain clear text which can be read by a local privileged user.
local
low complexity
ibm CWE-312
2.1
2022-04-11 CVE-2021-39068 Cross-site Scripting vulnerability in IBM Curam Social Program Management 7.0.11.0/8.0.1
IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2022-03-14 CVE-2022-22348 Cross-Site Request Forgery (CSRF) vulnerability in IBM Spectrum Protect Operations Center
IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.13.xxx is vulnerable to reverse tabnabbing where it could allow a page linked to from within Operations Center to rewrite it.
network
ibm CWE-352
3.5
2022-03-14 CVE-2021-39055 Cross-site Scripting vulnerability in IBM Spectrum Copy Data Management
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.14.3 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
2022-03-02 CVE-2022-22350 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service.
local
low complexity
ibm
2.1
2022-03-02 CVE-2021-38996 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service.
local
low complexity
ibm
2.1
2022-03-01 CVE-2021-38955 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user with elevated privileges to cause a denial of service due to a file creation vulnerability in the audit commands.
local
low complexity
ibm
2.1