Vulnerabilities > IBM > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-11 | CVE-2017-1740 | Cross-site Scripting vulnerability in IBM Curam Social Program Management IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. | 3.5 |
| 2018-01-04 | CVE-2017-1699 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM Websphere MQ IBM MQ Managed File Transfer Agent 8.0 and 9.0 sets insecure permissions on certain files it creates. | 3.6 |
| 2017-12-27 | CVE-2017-1365 | Cross-site Scripting vulnerability in IBM products IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle Management 4.0, 5.0., and 6.0) is vulnerable to cross-site scripting. | 3.5 |
| 2017-12-20 | CVE-2017-1261 | Information Exposure vulnerability in IBM Security Guardium IBM Security Guardium 10.0 stores potentially sensitive information in log files that could be read by a local user. | 2.1 |
| 2017-12-20 | CVE-2017-1270 | Session Fixation vulnerability in IBM Security Guardium IBM Security Guardium 10.0 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. | 2.1 |
| 2017-12-20 | CVE-2017-1494 | Cross-site Scripting vulnerability in IBM Business Process Manager 8.5.5.0/8.5.6.0/8.5.7.0 IBM Business Process Manager 8.5 is vulnerable to cross-site scripting. | 3.5 |
| 2017-12-20 | CVE-2017-1595 | Information Exposure vulnerability in IBM Security Guardium IBM Security Guardium 10.0 Database Activity Monitor could allow a local attacker to obtain highly sensitive information via unspecified vectors. | 2.1 |
| 2017-12-20 | CVE-2017-1596 | Information Exposure vulnerability in IBM Security Guardium IBM Security Guardium 10.0 Database Activity Monitor could allow a local attacker to obtain highly sensitive information via unspecified vectors. | 2.1 |
| 2017-12-20 | CVE-2017-1600 | Cross-site Scripting vulnerability in IBM Security Guardium IBM Security Guardium 10.0 Database Activity Monitor is vulnerable to cross-site scripting. | 3.5 |
| 2017-12-20 | CVE-2017-1751 | Cross-site Scripting vulnerability in IBM Robotic Process Automation With Automation Anywhere 10.0.0 IBM Robotic Process Automation with Automation Anywhere 10.0.0 is vulnerable to cross-site scripting. | 3.5 |