VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
IBM
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-12-03
CVE-2021-29716
IBM Cognos Analytics 11.1.7 and 11.2.0 could allow a low level user to reas of the application that privileged user should only be allowed to view.
network
low complexity
ibm
netapp
6.5
6.5
2021-12-03
CVE-2021-29719
IBM Cognos Analytics 11.1.7 and 11.2.0 could be vulnerable to client side vulnerabilties due to a web response specifying an incorrect content type.
network
low complexity
ibm
netapp
5.3
5.3
2021-12-03
CVE-2021-29867
IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to view or edit a Jupyter notebook that they should not have access to.
network
low complexity
ibm
netapp
5.4
5.4
2021-12-03
CVE-2021-38909
Cross-site Scripting vulnerability in multiple products
IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting.
network
low complexity
ibm
netapp
CWE-79
5.4
5.4
2021-12-01
CVE-2021-29779
Unspecified vulnerability in IBM Qradar Security Information and Event Manager
IBM QRadar SIEM 7.3 and 7.4 could allow an attacker to obtain sensitive information due to the server performing key exchange without entity authentication on inter-host communications using man in the middle techniques.
network
high complexity
ibm
5.9
5.9
2021-12-01
CVE-2021-29849
Cross-site Scripting vulnerability in IBM Qradar Security Information and Event Manager
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting.
network
low complexity
ibm
CWE-79
6.1
6.1
2021-12-01
CVE-2021-29863
Server-Side Request Forgery (SSRF) vulnerability in IBM Qradar Security Information and Event Manager
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to server side request forgery (SSRF).
network
low complexity
ibm
CWE-918
4.3
4.3
2021-11-30
CVE-2021-38958
Unspecified vulnerability in IBM MQ Appliance 9.2.0.0
IBM MQ Appliance 9.2 CD and 9.2 LTS is affected by a denial of service attack caused by a concurrency issue.
local
low complexity
ibm
5.5
5.5
2021-11-30
CVE-2021-38967
Code Injection vulnerability in IBM MQ Appliance 9.2.0.0
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code.
local
low complexity
ibm
CWE-94
6.7
6.7
2021-11-30
CVE-2021-38999
Information Exposure vulnerability in IBM MQ Appliance 9.2.0.0
IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace.
local
low complexity
ibm
CWE-200
5.5
5.5
«
Previous
1
2
...
72
73
74
(current)
75
76
...
285
286
»
Next