Vulnerabilities > IBM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-12 | CVE-2019-4741 | Server-Side Request Forgery (SSRF) vulnerability in IBM Content Navigator 3.0.0 IBM Content Navigator 3.0CD is vulnerable to Server Side Request Forgery (SSRF). | 5.3 |
| 2020-02-12 | CVE-2019-4431 | Cross-site Scripting vulnerability in IBM Rational Publishing Engine 6.0.6/6.0.6.1 IBM Rational Publishing Engine 6.0.6 and 6.0.6.1 is vulnerable to cross-site scripting. | 5.4 |
| 2020-02-10 | CVE-2012-2204 | Unspecified vulnerability in IBM Infosphere Guardium 8.0.0/8.2.0 InfoSphere Guardium aix_ktap module: DoS | 5.5 |
| 2020-02-05 | CVE-2019-4670 | Unspecified vulnerability in IBM Websphere Application Server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to obtain sensitive information caused by improper data representation. | 6.5 |
| 2020-02-04 | CVE-2019-4674 | Path Traversal vulnerability in IBM Security Identity Manager 7.0.1 IBM Security Identity Manager 7.0.1 could allow a remote attacker to traverse directories on the system. | 4.9 |
| 2020-02-04 | CVE-2019-4562 | Information Exposure vulnerability in IBM Security Directory Server IBM Security Directory Server 6.4.0 stores sensitive information in URLs. | 5.3 |
| 2020-02-04 | CVE-2019-4551 | Missing Authentication for Critical Function vulnerability in IBM Security Directory Server IBM Security Directory Server 6.4.0 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. | 5.3 |
| 2020-02-04 | CVE-2019-4550 | Unspecified vulnerability in IBM Security Directory Server IBM Security Directory Server 6.4.0 is deployed with active debugging code that can create unintended entry points. | 5.3 |
| 2020-02-04 | CVE-2019-4548 | Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM Security Directory Server IBM Security Directory Server 6.4.0 could allow a remote attacker to hijack the clicking action of the victim. | 6.1 |
| 2020-02-04 | CVE-2019-4451 | Cross-site Scripting vulnerability in IBM Security Identity Manager IBM Security Identity Manager 6.0.0 is vulnerable to cross-site scripting. | 5.4 |