Vulnerabilities > IBM > Tivoli Workload Scheduler > 9.3

DATE CVE VULNERABILITY TITLE RISK
2020-03-10 CVE-2019-4608 Cross-site Scripting vulnerability in IBM Tivoli Workload Scheduler 9.3
IBM Tivoli Workload Scheduler 9.3 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2019-10-16 CVE-2019-4031 Unspecified vulnerability in IBM Tivoli Workload Scheduler
IBM Workload Scheduler Distributed 9.2, 9.3, 9.4, and 9.5 contains a vulnerability that could allow a local user to write files as root in the file system, which could allow the attacker to gain root privileges.
local
low complexity
ibm
7.8
2018-03-14 CVE-2018-1386 Incorrect Permission Assignment for Critical Resource vulnerability in IBM Tivoli Workload Scheduler
IBM Tivoli Workload Automation for AIX (IBM Workload Scheduler 8.6, 9.1, 9.2, 9.3, and 9.4) contains directories with improper permissions that could allow a local user to with special access to gain root privileges.
local
low complexity
ibm CWE-732
7.8