Vulnerabilities > IBM > Tivoli Business Service Manager

DATE CVE VULNERABILITY TITLE RISK
2020-09-15 CVE-2020-4344 Insecure Storage of Sensitive Information vulnerability in IBM Tivoli Business Service Manager 6.2.0.0
IBM Tivoli Business Service Manager 6.2.0.0 - 6.2.0.2 IF 1 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-922
3.3
3.3
2018-03-09 CVE-2016-0286 Information Exposure vulnerability in IBM Tivoli Business Service Manager 6.1.0/6.1.1
IBM Tivoli Business Service Manager 6.1.0 before 6.1.0-TIV-BSM-FP0004 and 6.1.1 before 6.1.1-TIV-BSM-FP0004 allows remote authenticated users to obtain administrator passwords by leveraging unspecified privileges.
network
low complexity
ibm CWE-200
8.8
8.8
2018-02-02 CVE-2016-0311 Cross-site Scripting vulnerability in IBM Tivoli Business Service Manager 6.1.0/6.1.1
Cross-site scripting (XSS) vulnerability in IBM Tivoli Business Service Manager 6.1.0 before 6.1.0-TIV-BSM-FP0004 and 6.1.1 before 6.1.1-TIV-BSM-FP0004 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
low complexity
ibm CWE-79
5.4
5.4