Ibm

Algo One

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-1154

  • EPSS 0.25%
  • Veröffentlicht 31.03.2017 18:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to files in the local environment which should not be viewed by application users. IBM Reference #: 1999892.

4.3

CVE-2017-1155

  • EPSS 0.53%
  • Veröffentlicht 20.03.2017 16:59:02
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to another user's reports using a specially crafted HTTP request. IBM Reference #: 1999754.

5.4

CVE-2016-0390

  • EPSS 0.17%
  • Veröffentlicht 15.05.2016 01:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algorithmics Algo One Algo Risk Application (ARA) 4.9.1 through 5.1.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

4

CVE-2013-6304

  • EPSS 0.61%
  • Veröffentlicht 06.03.2014 11:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple directory traversal vulnerabilities in Algo Risk Application (ARA) 2.4.0.1 through 4.9.1 in IBM Algo One allow remote authenticated users to bypass intended access restrictions via a crafted pathname for a (1) configuration or (2) JAR file.

3.5

CVE-2013-6299

  • EPSS 0.17%
  • Veröffentlicht 05.03.2014 11:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authentic...

3.5

CVE-2013-6300

  • EPSS 0.17%
  • Veröffentlicht 05.03.2014 11:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authentic...

3.5

CVE-2013-6301

  • EPSS 0.17%
  • Veröffentlicht 05.03.2014 11:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authentic...

6.5

CVE-2013-6302

  • EPSS 0.22%
  • Veröffentlicht 05.03.2014 11:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

SQL injection vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authenticated users to...

4

CVE-2013-6303

  • EPSS 0.22%
  • Veröffentlicht 05.03.2014 11:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Directory traversal vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authenticated us...

4.3

CVE-2013-6318

  • EPSS 0.24%
  • Veröffentlicht 05.03.2014 11:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote attackers...