Ibm

Algo One

16 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-1154

  • EPSS 0.25%
  • Published 31.03.2017 18:59:00
  • Last modified 20.04.2025 01:37:25

IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to files in the local environment which should not be viewed by application users. IBM Reference #: 1999892.

4.3

CVE-2017-1155

  • EPSS 0.53%
  • Published 20.03.2017 16:59:02
  • Last modified 20.04.2025 01:37:25

IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to another user's reports using a specially crafted HTTP request. IBM Reference #: 1999754.

5.4

CVE-2016-0390

  • EPSS 0.17%
  • Published 15.05.2016 01:59:02
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algorithmics Algo One Algo Risk Application (ARA) 4.9.1 through 5.1.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

4

CVE-2013-6304

  • EPSS 0.61%
  • Published 06.03.2014 11:55:05
  • Last modified 12.04.2025 10:46:40

Multiple directory traversal vulnerabilities in Algo Risk Application (ARA) 2.4.0.1 through 4.9.1 in IBM Algo One allow remote authenticated users to bypass intended access restrictions via a crafted pathname for a (1) configuration or (2) JAR file.

3.5

CVE-2013-6299

  • EPSS 0.17%
  • Published 05.03.2014 11:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authentic...

3.5

CVE-2013-6300

  • EPSS 0.17%
  • Published 05.03.2014 11:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authentic...

3.5

CVE-2013-6301

  • EPSS 0.17%
  • Published 05.03.2014 11:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authentic...

6.5

CVE-2013-6302

  • EPSS 0.22%
  • Published 05.03.2014 11:55:03
  • Last modified 12.04.2025 10:46:40

SQL injection vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authenticated users to...

4

CVE-2013-6303

  • EPSS 0.22%
  • Published 05.03.2014 11:55:03
  • Last modified 12.04.2025 10:46:40

Directory traversal vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote authenticated us...

4.3

CVE-2013-6318

  • EPSS 0.24%
  • Published 05.03.2014 11:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote attackers...