Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2018-07-10 CVE-2018-1521 Cross-site Scripting vulnerability in IBM Rational Team Concert
IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-07-06 CVE-2017-1237 Cross-site Scripting vulnerability in IBM products
IBM Jazz based applications are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-07-06 CVE-2017-1238 Cross-site Scripting vulnerability in IBM products
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-07-06 CVE-2017-1242 Code Injection vulnerability in IBM products
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection.
network
ibm CWE-94
3.5
3.5
2018-07-06 CVE-2017-1329 Code Injection vulnerability in IBM products
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection.
network
ibm CWE-94
3.5
3.5
2018-07-06 CVE-2017-1795 Information Exposure Through Log Files vulnerability in IBM Websphere MQ Managed File Transfer
IBM WebSphere MQ 7.5, 8.0, and 9.0 through 9.0.4 could allow a local user to obtain highly sensitive information via trace logs in IBM WebSphere MQ Managed File Transfer.
local
low complexity
ibm CWE-532
2.1
2.1
2018-07-06 CVE-2018-1494 Cross-site Scripting vulnerability in IBM Rational Doors Next Generation
IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-07-06 CVE-2018-1555 Cross-site Scripting vulnerability in IBM Content Foundation and Filenet Content Manager
IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-07-06 CVE-2018-1556 Cross-site Scripting vulnerability in IBM Content Foundation and Filenet Content Manager
IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-07-06 CVE-2018-1621 Cleartext Storage of Sensitive Information vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local attacker to obtain clear text password in a trace file caused by improper handling of some datasource custom properties.
local
low complexity
ibm CWE-312
2.1
2.1