Ibm

Water Operations For Waternamics

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2020-4317

  • EPSS 0.18%
  • Veröffentlicht 28.07.2020 12:15:12
  • Zuletzt bearbeitet 21.11.2024 05:32:34

IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center (IOC), and IBM Water Operations for Waternamics are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in th...

5.4

CVE-2020-4318

  • EPSS 0.31%
  • Veröffentlicht 28.07.2020 12:15:12
  • Zuletzt bearbeitet 21.11.2024 05:32:34

IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center (IOC), and IBM Water Operations for Waternamics are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in th...

7.5

CVE-2019-4321

  • EPSS 0.18%
  • Veröffentlicht 05.09.2019 15:15:13
  • Zuletzt bearbeitet 21.11.2024 04:43:28

IBM Intelligent Operations Center V5.1.0 - V5.2.0, IBM Intelligent Operations Center for Emergency Management V5.1.0 - V5.1.0.6, and IBM Water Operations for Waternamics V5.1.0 - V5.2.1.1 does not require that users should have strong passwords by de...

8.2

CVE-2019-4419

  • EPSS 0.43%
  • Veröffentlicht 20.08.2019 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:43:34

IBM Intelligent Operations Center V5.1.0 through V5.2.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory reso...

6.2

CVE-2019-4420

  • EPSS 0.05%
  • Veröffentlicht 20.08.2019 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:43:34

IBM Intelligent Operations Center V5.1.0 through V5.2.0 could disclose detailed error messages, revealing sensitive information that could aid in further attacks against the system. IBM X-Force ID: 162738.

8.8

CVE-2019-4066

  • EPSS 1%
  • Veröffentlicht 07.06.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:06

IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 could allow an authenciated user to create arbitrary users which could cause ID management issues and result in code execution. IBM X-Force ID: 157011.

7.5

CVE-2019-4067

  • EPSS 0.21%
  • Veröffentlicht 07.06.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:06

IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 157012.

7.5

CVE-2019-4068

  • EPSS 0.25%
  • Veröffentlicht 07.06.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:07

IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 is vulnerable to user enumeration, allowing an attacker to brute force into the system. IBM X-Force ID: 157013.

8.8

CVE-2019-4069

  • EPSS 0.52%
  • Veröffentlicht 07.06.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:07

IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 does not properly validate file types, allowing an attacker to upload malicious content. IBM X-Force ID: 157014.

5.4

CVE-2019-4070

  • EPSS 0.16%
  • Veröffentlicht 07.06.2019 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:43:07

IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to creden...