Vulnerabilities > IBM > Tririga Application Platform > 3.4.2.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-31 | CVE-2020-4868 | Information Exposure Through an Error Message vulnerability in IBM Tririga Application Platform IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 5.3 |
| 2018-02-21 | CVE-2016-0344 | Cross-site Scripting vulnerability in IBM Tririga Application Platform Cross-site scripting (XSS) vulnerability in the My Reports component in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 3.5 |
| 2017-12-07 | CVE-2017-1465 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA 3.2, 3.3, 3.4, and 3.5 could allow a remote attacker to hijack the clicking action of the victim. | 3.5 |
| 2017-07-21 | CVE-2017-1374 | Information Exposure vulnerability in IBM Tririga Application Platform Sensitive data can be exposed in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 that can lead to an attacker gaining unauthorized access to the system. | 4.0 |
| 2017-07-21 | CVE-2017-1373 | Unspecified vulnerability in IBM Tririga Application Platform Reports executed in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 contains a vulnerability that could allow an authenticated user to execute a report they do not have access to. | 6.5 |
| 2017-07-21 | CVE-2017-1372 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. | 3.5 |
| 2017-07-21 | CVE-2017-1371 | Unspecified vulnerability in IBM Tririga Application Platform Builder tools running in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 contains a vulnerability that could allow an authenticated user to execute Builder tool actions they do not have access to. | 6.5 |
| 2017-04-05 | CVE-2017-1180 | Remote Privilege Escalation vulnerability in IBM TRIRIGA Application Platform The IBM TRIRIGA Document Manager contains a vulnerability that could allow an authenticated user to execute actions they did not have access to. network ibm | 3.5 |
| 2017-03-31 | CVE-2017-1171 | Remote Privilege Escalation vulnerability in IBM TRIRIGA Application Platform The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. | 4.0 |
| 2017-03-27 | CVE-2017-1153 | Remote Privilege Escalation vulnerability in IBM TRIRIGA Applications IBM TRIRIGA Report Manager 3.2 through 3.5 contains a vulnerability that could allow an authenticated user to execute actions that they do not have access to. | 6.5 |