Ibm

Jazz Reporting Service

52 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2017-1340

  • EPSS 0.21%
  • Veröffentlicht 01.11.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 6.0.4 could allow an authenticated user to obtain information on another server that the current report builder interacts with. IBM X-Force ID: 126455.

5.3

CVE-2017-1490

  • EPSS 0.29%
  • Veröffentlicht 14.09.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An unspecified vulnerability in the Lifecycle Query Engine of Jazz Reporting Service 6.0 through 6.0.4 could disclose highly sensitive information.

4.9

CVE-2017-1370

  • EPSS 0.26%
  • Veröffentlicht 31.07.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensitive information, including user credentials, through an error message from the Report Builder administrator configuration page. IBM X-Force ID: 126863.

5.4

CVE-2016-9989

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...

4.3

CVE-2017-1157

  • EPSS 0.21%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could allow an authenticated attacker to access report data that should be restricted to authorized users. IBM X-Force ID: 122788.

5.4

CVE-2017-1096

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosur...

5.4

CVE-2016-9988

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...

5.4

CVE-2016-9987

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...

5.4

CVE-2016-9986

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...

5.4

CVE-2016-6054

  • EPSS 0.23%
  • Veröffentlicht 01.02.2017 20:59:02
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio...