Ibm

Jazz Reporting Service

52 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2019-4494

  • EPSS 0.28%
  • Published 01.10.2019 15:15:11
  • Last modified 21.11.2024 04:43:39

IBM Jazz Reporting Service (JRS) 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionali...

5.4

CVE-2019-4495

  • EPSS 0.28%
  • Published 01.10.2019 15:15:11
  • Last modified 21.11.2024 04:43:40

IBM Jazz Reporting Service (JRS) 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionali...

5.4

CVE-2019-4497

  • EPSS 0.28%
  • Published 01.10.2019 15:15:11
  • Last modified 21.11.2024 04:43:40

IBM Jazz Reporting Service (JRS) 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionali...

5.4

CVE-2019-4184

  • EPSS 0.23%
  • Published 29.05.2019 15:29:00
  • Last modified 21.11.2024 04:43:17

IBM Jazz Reporting Service 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclos...

4.3

CVE-2019-4047

  • EPSS 0.47%
  • Published 29.04.2019 17:29:00
  • Last modified 21.11.2024 04:43:05

IBM Jazz Reporting Service (JRS) 6.0.6 could allow an authenticated user to access the execution log files as a guest user, and obtain the information of the server execution. IBM X-Force ID: 156243.

5.4

CVE-2018-2004

  • EPSS 0.23%
  • Published 29.04.2019 17:29:00
  • Last modified 21.11.2024 04:03:34

IBM Jazz Reporting Service (JRS) 6.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...

5.4

CVE-2018-1918

  • EPSS 0.23%
  • Published 08.01.2019 16:29:00
  • Last modified 21.11.2024 04:00:35

IBM Jazz Reporting Service (JRS) 6.0.3, 6.0.4, 6.0.5, and 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cr...

6.5

CVE-2018-1639

  • EPSS 0.16%
  • Published 16.11.2018 15:29:00
  • Last modified 21.11.2024 04:00:07

The Report Builder of Jazz Reporting Service 5.0 through 5.0.2 and 6.0 through 6.0.6 could allow an authenticated user to obtain sensitive information beyond its assigned privileges. IBM X-Force ID: 144579.

5.4

CVE-2018-1363

  • EPSS 0.24%
  • Published 25.04.2018 13:29:00
  • Last modified 21.11.2024 03:59:41

IBM Jazz Reporting Service (JRS) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lead...

5.4

CVE-2017-1750

  • EPSS 0.24%
  • Published 25.04.2018 13:29:00
  • Last modified 21.11.2024 03:22:18

IBM Jazz Reporting Service (JRS) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lead...