Ibm

Jazz Reporting Service

55 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2018-1639

  • EPSS 0.16%
  • Veröffentlicht 16.11.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:00:07

The Report Builder of Jazz Reporting Service 5.0 through 5.0.2 and 6.0 through 6.0.6 could allow an authenticated user to obtain sensitive information beyond its assigned privileges. IBM X-Force ID: 144579.

5.4

CVE-2018-1363

  • EPSS 0.24%
  • Veröffentlicht 25.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:41

IBM Jazz Reporting Service (JRS) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lead...

5.4

CVE-2017-1750

  • EPSS 0.24%
  • Veröffentlicht 25.04.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:22:18

IBM Jazz Reporting Service (JRS) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lead...

5

CVE-2017-1340

  • EPSS 0.21%
  • Veröffentlicht 01.11.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 6.0.4 could allow an authenticated user to obtain information on another server that the current report builder interacts with. IBM X-Force ID: 126455.

5.3

CVE-2017-1490

  • EPSS 0.29%
  • Veröffentlicht 14.09.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An unspecified vulnerability in the Lifecycle Query Engine of Jazz Reporting Service 6.0 through 6.0.4 could disclose highly sensitive information.

4.9

CVE-2017-1370

  • EPSS 0.26%
  • Veröffentlicht 31.07.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensitive information, including user credentials, through an error message from the Report Builder administrator configuration page. IBM X-Force ID: 126863.

5.4

CVE-2017-1096

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosur...

4.3

CVE-2017-1157

  • EPSS 0.21%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could allow an authenticated attacker to access report data that should be restricted to authorized users. IBM X-Force ID: 122788.

5.4

CVE-2016-9989

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...

5.4

CVE-2016-9988

  • EPSS 0.27%
  • Veröffentlicht 05.07.2017 18:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...