Vulnerabilities > IBM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-13 | CVE-2021-20363 | Cross-site Scripting vulnerability in IBM Cloud PAK for Applications 4.3 IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. | 5.4 |
| 2021-07-13 | CVE-2021-20364 | Cross-site Scripting vulnerability in IBM Cloud PAK for Applications 4.3 IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. | 5.4 |
| 2021-07-13 | CVE-2021-20365 | Cross-site Scripting vulnerability in IBM Cloud PAK for Applications 4.3 IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. | 5.4 |
| 2021-07-13 | CVE-2021-20366 | Cross-site Scripting vulnerability in IBM Cloud PAK for Applications IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. | 5.4 |
| 2021-07-13 | CVE-2021-20368 | Cross-site Scripting vulnerability in IBM Cloud PAK for Applications IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. | 5.4 |
| 2021-07-13 | CVE-2021-20369 | Inadequate Encryption Strength vulnerability in IBM Cloud PAK for Applications IBM Cloud Pak for Applications 4.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 5.9 |
| 2021-07-13 | CVE-2021-20424 | Information Exposure Through an Error Message vulnerability in IBM Cloud PAK for Applications IBM Cloud Pak for Applications 4.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 4.3 |
| 2021-07-12 | CVE-2021-20414 | Unspecified vulnerability in IBM Guardium Data Encryption 3.0.0.2 IBM Guardium Data Encryption (GDE) 3.0.0.2 could allow a user to bruce force sensitive information due to not properly limiting the number of interactions. | 4.9 |
| 2021-07-12 | CVE-2021-29803 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus GUI 8.1.0 IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. | 5.4 |
| 2021-07-12 | CVE-2021-29804 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus GUI 8.1.0 IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. | 5.4 |