Vulnerabilities > IBM > Security Siteprotector System > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-11 | CVE-2020-4138 | Unspecified vulnerability in IBM Security Siteprotector System 3.1.1 IBM SiteProtector Appliance 3.1.1 allows web pages to be stored locally which can be read by another user on the system. | 5.5 |
| 2021-11-12 | CVE-2020-4140 | Cross-site Scripting vulnerability in IBM Security Siteprotector System 3.1.1.0 IBM Security SiteProtector System 3.1.1 is vulnerable to cross-site scripting. | 5.4 |
| 2021-11-12 | CVE-2020-4146 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM Security Siteprotector System 3.1.1.0 IBM Security SiteProtector System 3.1.1 could allow a remote attacker to obtain sensitive information, caused by missing 'HttpOnly' flag. | 5.3 |