Vulnerabilities > IBM > Tivoli Netcool Impact > High

DATE CVE VULNERABILITY TITLE RISK
2021-07-12 CVE-2021-29794 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Tivoli Netcool/Impact 7.1.0.20/7.1.0.21
IBM Tivoli Netcool/Impact 7.1.0.20 and 7.1.0.21 uses an insecure SSH server configuration which enables weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
7.5
2020-03-31 CVE-2020-4238 Cross-Site Request Forgery (CSRF) vulnerability in IBM Tivoli Netcool/Impact
IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
8.8
2020-03-31 CVE-2020-4237 Cross-Site Request Forgery (CSRF) vulnerability in IBM Tivoli Netcool/Impact
IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
8.8
2019-06-17 CVE-2019-4103 Unspecified vulnerability in IBM Tivoli Netcool/Impact 7.1.0
IBM Tivoli Netcool/Impact 7.1.0 allows for remote execution of command by low privileged User.
low complexity
ibm
8.0
8.0