Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2018-02-02 CVE-2016-0303 Cross-site Scripting vulnerability in IBM Tivoli Integrated Portal
Cross-site scripting (XSS) vulnerability in IBM Tivoli Integrated Portal 2.2.0.0 through 2.2.0.15 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
ibm CWE-79
3.5
3.5
2018-02-02 CVE-2016-0311 Cross-site Scripting vulnerability in IBM Tivoli Business Service Manager 6.1.0/6.1.1
Cross-site scripting (XSS) vulnerability in IBM Tivoli Business Service Manager 6.1.0 before 6.1.0-TIV-BSM-FP0004 and 6.1.1 before 6.1.1-TIV-BSM-FP0004 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
ibm CWE-79
3.5
3.5
2018-01-29 CVE-2017-1779 Insufficiently Protected Credentials vulnerability in multiple products
IBM Cognos Analytics 11.0 could store cached credentials locally that could be obtained by a local user.
local
low complexity
ibm netapp CWE-522
2.1
2.1
2018-01-29 CVE-2017-1783 Improper Authentication vulnerability in multiple products
IBM Cognos Analytics 11.0 could allow a local user to change parameters set from the Cognos Analytics menus without proper authentication.
local
low complexity
ibm netapp CWE-287
2.1
2.1
2018-01-29 CVE-2017-1784 Information Exposure vulnerability in multiple products
IBM Cognos Analytics 11.0 could produce results in temporary files that contain highly sensitive information that can be read by a local user.
local
low complexity
ibm netapp CWE-200
2.1
2.1
2018-01-26 CVE-2017-1516 Improper Input Validation vulnerability in IBM Rational Doors
IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker to hijack the clicking action of the victim.
network
ibm CWE-20
3.5
3.5
2018-01-26 CVE-2017-1532 Cross-site Scripting vulnerability in IBM Rational Doors
IBM DOORS 9.5 and 9.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-01-26 CVE-2017-1540 Cross-site Scripting vulnerability in IBM Rational Doors
IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-01-26 CVE-2017-1545 Unspecified vulnerability in IBM Rational Doors
IBM Doors Web Access 9.5 and 9.6 could allow an attacker with physical access to the system to log into the application using previously stored credentials.
local
low complexity
ibm
2.1
2.1
2018-01-26 CVE-2017-1563 Cross-site Scripting vulnerability in IBM Rational Doors
IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5