Ibm

Engineering Lifecycle Optimization - Engineering Insights

18 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-20347

  • EPSS 0.1%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:46:26

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating ...

5.5

CVE-2021-20346

  • EPSS 0.15%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:46:26

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating ...

5.5

CVE-2021-20345

  • EPSS 0.1%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:46:26

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating ...

5.5

CVE-2021-20343

  • EPSS 0.09%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:46:25

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating ...

5.4

CVE-2021-20338

  • EPSS 0.19%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:46:25

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disc...

5.4

CVE-2020-5030

  • EPSS 0.21%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:33:34

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disc...

5.4

CVE-2020-4977

  • EPSS 0.19%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:33:30

IBM Engineering Lifecycle Optimization - Publishing is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credent...

6.5

CVE-2020-4732

  • EPSS 0.21%
  • Published 02.06.2021 21:15:07
  • Last modified 21.11.2024 05:33:11

IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to obtain sensitive information due to lack of security restrictions. IBM X-Force ID: 188126.