Vulnerabilities > IBM > Tivoli Netcool Omnibus Webgui > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-23 | CVE-2021-29800 | Cross-site Scripting vulnerability in IBM products IBM Tivoli Netcool/OMNIbus_GUI and IBM Jazz for Service Management 1.1.3.10 is vulnerable to stored cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29806 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29807 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29808 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29809 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29811 | Insufficiently Protected Credentials vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 stores user credentials in plain clear text which can be read by an authenticated admin user. | 4.9 |
| 2021-09-20 | CVE-2021-29817 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29818 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29819 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to cross-site scripting. | 5.4 |
| 2021-09-20 | CVE-2021-29820 | Cross-site Scripting vulnerability in IBM Tivoli Netcool/Omnibus Webgui 8.1.0 IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to cross-site scripting. | 5.4 |