Ibm

Tivoli Netcool/impact

11 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2021-29794

  • EPSS 0.09%
  • Published 12.07.2021 16:15:09
  • Last modified 21.11.2024 06:01:49

IBM Tivoli Netcool/Impact 7.1.0.20 and 7.1.0.21 uses an insecure SSH server configuration which enables weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 203556.

6.1

CVE-2020-4849

  • EPSS 0.11%
  • Published 15.12.2020 15:15:12
  • Last modified 21.11.2024 05:33:19

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.19 Interim Fix 7 could allow a remote attacker to bypass security restrictions, caused by a reverse tabnabbing flaw. An attacker could exploit this vulnerability and redirect a vitcim to a phishing site...

8.8

CVE-2020-4238

  • EPSS 0.11%
  • Published 31.03.2020 15:15:20
  • Last modified 21.11.2024 05:32:26

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 175411.

5.3

CVE-2020-4239

  • EPSS 0.12%
  • Published 31.03.2020 15:15:20
  • Last modified 21.11.2024 05:32:26

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system....

6.5

CVE-2020-4236

  • EPSS 0.26%
  • Published 31.03.2020 15:15:19
  • Last modified 21.11.2024 05:32:26

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 could allow an authenticated user to cause a denial of service due to improper content parsing in the project management module. IBM X-Force ID: 175409.

8.8

CVE-2020-4237

  • EPSS 0.11%
  • Published 31.03.2020 15:15:19
  • Last modified 21.11.2024 05:32:26

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 175410.

5.4

CVE-2020-4235

  • EPSS 0.16%
  • Published 31.03.2020 15:15:18
  • Last modified 21.11.2024 05:32:26

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...

6.1

CVE-2019-4681

  • EPSS 0.25%
  • Published 24.03.2020 16:15:12
  • Last modified 21.11.2024 04:43:58

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...

5.4

CVE-2019-4569

  • EPSS 0.24%
  • Published 22.11.2019 16:15:12
  • Last modified 21.11.2024 04:43:45

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.16 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...

5.3

CVE-2019-4570

  • EPSS 0.28%
  • Published 22.11.2019 16:15:12
  • Last modified 21.11.2024 04:43:45

IBM Tivoli Netcool Impact 7.1.0 through 7.1.0.16 generates an error message that includes sensitive information about its environment, users, or associated data. IBM X-Force ID: 166720.