Vulnerabilities > IBM > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-24 CVE-2024-37533 Unspecified vulnerability in IBM Infosphere Information Server 11.7
IBM InfoSphere Information Server 11.7 could disclose sensitive user information to another user with physical access to the machine.
low complexity
ibm
4.6
2024-07-17 CVE-2024-28796 Unspecified vulnerability in IBM Rational Clearquest
IBM ClearQuest (CQ) 9.1 through 9.1.0.6 is vulnerable to stored cross-site scripting.
network
low complexity
ibm
5.4
2024-07-16 CVE-2022-35640 Unspecified vulnerability in IBM Sterling Partner Engagement Manager 6.2.2
IBM Sterling Partner Engagement Manager 6.2.2 could allow a local attacker to obtain sensitive information when a detailed technical error message is returned.
local
low complexity
ibm
5.5
2024-07-15 CVE-2024-39729 Unspecified vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow an authenticated user to obtain sensitive information from source code that could be used in further attacks against the system.
network
low complexity
ibm
4.3
2024-07-15 CVE-2024-39735 Cross-site Scripting vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2024-07-15 CVE-2024-39740 Unspecified vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP requests that could allow an attacker to gather information for future attacks against the system.
network
low complexity
ibm
5.3
2024-07-15 CVE-2024-39741 Unspecified vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to traverse directories on the system.
network
low complexity
ibm
5.3
2024-07-15 CVE-2024-39728 Unspecified vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to stored cross-site scripting.
network
low complexity
ibm
5.4
2024-07-15 CVE-2024-39737 Unspecified vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm
5.3
2024-07-15 CVE-2024-39739 Unspecified vulnerability in IBM Datacap and Datacap Navigator
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to server-side request forgery (SSRF).
network
low complexity
ibm
4.3