CVE-2017-1201
- EPSS 0.04%
- Veröffentlicht 05.10.2017 17:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
IBM BigFix Compliance Analytics 1.9.79 (TEMA SUAv1 SCA SCM) stores user credentials in clear text which can be read by a local user. IBM X-Force ID: 123676.
CVE-2017-1197
- EPSS 0.37%
- Veröffentlicht 15.06.2017 13:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
IBM BigFix Compliance (TEMA SUAv1 SCA SCM) uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 123672.
CVE-2017-1179
- EPSS 0.14%
- Veröffentlicht 08.06.2017 21:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
IBM BigFix Compliance Analytics 1.9.79 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 123431.
CVE-2017-1178
- EPSS 0.28%
- Veröffentlicht 07.06.2017 17:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
IBM Endpoint Manager for Security and Compliance 1.9.70 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credential...
CVE-2017-1196
- EPSS 0.31%
- Veröffentlicht 07.06.2017 17:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
IBM BigFix Compliance (TEMA SUAv1 SCA SCM) 1.9.70 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 123671.