Vulnerabilities > IBM > Tririga Application Platform > 3.5.3.0

DATE CVE VULNERABILITY TITLE RISK
2023-07-31 CVE-2020-4868 Information Exposure Through an Error Message vulnerability in IBM Tririga Application Platform
IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
5.3
2019-05-07 CVE-2019-4208 XXE vulnerability in IBM Tririga Application Platform 3.5.3.0/3.6.0.0
IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm CWE-611
7.1
2019-05-07 CVE-2019-4207 Unspecified vulnerability in IBM Tririga Application Platform 3.5.3.0/3.6.0.0
IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 may disclose sensitive information only available to a local user that could be used in further attacks against the system.
local
low complexity
ibm
3.3
2019-05-07 CVE-2018-2008 Information Exposure vulnerability in IBM Tririga Application Platform 3.5.3.0/3.6.0.0
IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 could disclose sensitive information to an authenticated user that could aid in further attacks against the system.
network
low complexity
ibm CWE-200
4.3