Vulnerabilities > IBM > Tivoli Storage Productivity Center > 5.2.4.0

DATE CVE VULNERABILITY TITLE RISK
2017-02-01 CVE-2016-8943 Cross-site Scripting vulnerability in IBM products
IBM Tivoli Storage Productivity Center is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-02-01 CVE-2016-8942 Improper Access Control vulnerability in IBM products
IBM Tivoli Storage Productivity Center could allow an authenticated user with intimate knowledge of the system to edit a limited set of properties on the server.
network
high complexity
ibm CWE-284
3.1
3.1
2017-02-01 CVE-2016-8941 Cross-Site Request Forgery (CSRF) vulnerability in IBM products
IBM Tivoli Storage Productivity Center is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
8.8