Vulnerabilities > IBM > Security Secret Server > 10.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-06-24 | CVE-2020-4323 | Cross-site Scripting vulnerability in IBM Security Secret Server 10.7/10.7.000059 IBM Security Secret Server 10.7 is vulnerable to cross-site scripting. | 4.3 |
2020-06-24 | CVE-2020-4322 | Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM Security Secret Server 10.7/10.7.000059 IBM Security Secret Server 10.7 could allow a remote attacker to hijack the clicking action of the victim. | 4.3 |
2020-01-28 | CVE-2019-4635 | Command Injection vulnerability in IBM Security Secret Server 10.7 IBM Security Secret Server 10.7 could allow a privileged user to perform unauthorized command injection due to imporoper input neutralization of special elements. | 4.0 |