Vulnerabilities > IBM > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-25 | CVE-2017-1424 | Cross-site Scripting vulnerability in IBM Business Process Manager 8.5.7.0 IBM Business Process Manager 8.5.7 is vulnerable to cross-site scripting. | 3.5 |
| 2017-09-19 | CVE-2014-6191 | Cross-site Scripting vulnerability in IBM Curam Social Program Management Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0 SP2, 6.0.4, and 6.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 3.5 |
| 2017-09-14 | CVE-2017-1490 | Information Exposure vulnerability in IBM Jazz Reporting Service An unspecified vulnerability in the Lifecycle Query Engine of Jazz Reporting Service 6.0 through 6.0.4 could disclose highly sensitive information. | 3.5 |
| 2017-09-12 | CVE-2017-1434 | Information Exposure vulnerability in IBM DB2 and DB2 Connect IBM DB2 for Linux, UNIX and Windows 11.1 (includes DB2 Connect Server) under unusual circumstances, could expose highly sensitive information in the error log to a local user. | 2.1 |
| 2017-09-07 | CVE-2017-1098 | Cross-site Scripting vulnerability in IBM Emptoris Supplier Lifecycle Management IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. | 3.5 |
| 2017-09-07 | CVE-2017-1502 | Cross-site Scripting vulnerability in IBM Content Navigator 2.0.3/3.0.0/3.0.1 IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. | 3.5 |
| 2017-08-31 | CVE-2017-1444 | Cross-site Scripting vulnerability in IBM Emptoris Sourcing IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. | 3.5 |
| 2017-08-31 | CVE-2017-1447 | Cross-site Scripting vulnerability in IBM Emptoris Sourcing IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. | 3.5 |
| 2017-08-30 | CVE-2017-1441 | Unspecified vulnerability in IBM Emptoris Services Procurement IBM Emptoris Services Procurement 10.0.0.5 could allow a local user to view sensitive information stored locally due to improper access control. | 2.1 |
| 2017-08-30 | CVE-2017-1445 | Cross-site Scripting vulnerability in IBM Emptoris Spend Analysis IBM Emptoris Spend Analysis 9.5.0.0 through 10.1.1 is vulnerable to cross-site scripting. | 3.5 |