Ibm

Engineering Insights

22 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2021-20502

  • EPSS 0.27%
  • Published 30.03.2021 17:15:16
  • Last modified 21.11.2024 05:46:41

IBM Jazz Foundation Products are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 198...

5.4

CVE-2021-20352

  • EPSS 0.16%
  • Published 30.03.2021 17:15:16
  • Last modified 21.11.2024 05:46:26

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trus...

5.4

CVE-2021-20357

  • EPSS 0.16%
  • Published 27.01.2021 17:15:14
  • Last modified 21.11.2024 05:46:27

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trust...

5.4

CVE-2020-4865

  • EPSS 0.21%
  • Published 27.01.2021 17:15:13
  • Last modified 21.11.2024 05:33:20

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trust...

5.4

CVE-2020-4855

  • EPSS 0.16%
  • Published 27.01.2021 17:15:12
  • Last modified 21.11.2024 05:33:19

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trust...

5.4

CVE-2020-4547

  • EPSS 0.09%
  • Published 27.01.2021 17:15:11
  • Last modified 21.11.2024 05:32:52

IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and ...

5.4

CVE-2020-4524

  • EPSS 0.16%
  • Published 27.01.2021 17:15:11
  • Last modified 21.11.2024 05:32:50

IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trust...

4.3

CVE-2020-4487

  • EPSS 0.11%
  • Published 08.01.2021 21:15:12
  • Last modified 21.11.2024 05:32:48

IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 18186...

5.4

CVE-2020-4733

  • EPSS 0.18%
  • Published 08.01.2021 21:15:12
  • Last modified 21.11.2024 05:33:11

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trus...

5.4

CVE-2020-4697

  • EPSS 0.24%
  • Published 08.01.2021 21:15:12
  • Last modified 21.11.2024 05:33:08

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trus...