Vulnerabilities > IBM > Low

DATE CVE VULNERABILITY TITLE RISK
2017-08-30 CVE-2017-1446 Cross-site Scripting vulnerability in IBM Emptoris Spend Analysis
IBM Emptoris Spend Analysis 9.5.0.0 through 10.1.1 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2017-08-29 CVE-2016-2967 Cross-site Scripting vulnerability in IBM Sametime
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2017-08-29 CVE-2016-2974 Information Exposure vulnerability in IBM Sametime
IBM Sametime Connect 8.5.2 and 9.0, after uninstalling the Sametime Rich Client, could disclose potentially sensitive information related to the Sametime environment as well as other users on the local machine of the user.
local
low complexity
ibm CWE-200
2.1
2.1
2017-08-29 CVE-2016-2975 Cross-site Scripting vulnerability in IBM Sametime
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2017-08-29 CVE-2016-2978 Information Exposure vulnerability in IBM Sametime
IBM Sametime 8.5.2 and 9.0 could store potentially sensitive information from the browser cache locally that could be available to a local user.
local
low complexity
ibm CWE-200
2.1
2.1
2017-08-29 CVE-2017-1485 Cross-site Scripting vulnerability in IBM Cognos Analytics
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2017-08-29 CVE-2017-1535 Cross-site Scripting vulnerability in IBM Cognos Analytics
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2017-08-29 CVE-2016-2972 Credentials Management vulnerability in IBM Sametime
IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user.
local
low complexity
ibm CWE-255
2.1
2.1
2017-08-29 CVE-2016-2973 Cross-site Scripting vulnerability in IBM Sametime
IBM Sametime Media Services 8.5.2 and 9.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2017-08-29 CVE-2016-2979 Cross-site Scripting vulnerability in IBM Sametime
IBM Sametime Meeting Server 8.5.2 and 9.0 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5