Page 15 of 170 results (0.003 seconds)

CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0

CVE-2017-1239

https://notcve.org/view.php?id=CVE-2017-1239

IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 could reveal sensitive information in HTTP 500 Internal Server Error responses. IBM X-Force ID: 124357. IBM Quality Manager (RQM) en versiones 5.0.x y desde la 6.0 hasta la 6.0.5 podría revelar información sensible en respuestas de error "HTTP 500: Error interno del servidor". IBM X-Force ID: 124357. • http://www.ibm.com/support/docview.wss?uid=ibm10716201 https://exchange.xforce.ibmcloud.com/vulnerabilities/124357 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2017-1238

https://notcve.org/view.php?id=CVE-2017-1238

IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 124356. IBM Quality Manager (RQM) en versiones 5.0.x y desde la 6.0 hasta la 6.0.5 es vulnerable a Cross-Site Scripting. Esta vulnerabilidad permite que los usuarios embeban código JavaScript arbitrario en la interfaz de usuario web, lo que altera las funcionalidades previstas. • http://www.ibm.com/support/docview.wss?uid=ibm10716201 https://exchange.xforce.ibmcloud.com/vulnerabilities/124356 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2017-1242

https://notcve.org/view.php?id=CVE-2017-1242

IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 124524. IBM Quality Manager (RQM) en versiones 5.0.x y desde la 6.0 hasta la 6.0.5 es vulnerable a inyección HTML. Un atacante remoto podría ejecutar código HTML malicioso que, cuando se visualiza, se ejecutaría en el navegador web de la víctima en el contexto de seguridad del sitio anfitrión. • http://www.ibm.com/support/docview.wss?uid=ibm10716201 https://exchange.xforce.ibmcloud.com/vulnerabilities/124524 • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2017-1329

https://notcve.org/view.php?id=CVE-2017-1329

IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 126231. IBM Quality Manager (RQM) en versiones 5.0.x y desde la 6.0 hasta la 6.0.5 es vulnerable a inyección HTML. Un atacante remoto podría ejecutar código HTML malicioso que, cuando se visualiza, se ejecutaría en el navegador web de la víctima en el contexto de seguridad del sitio anfitrión. • http://www.ibm.com/support/docview.wss?uid=ibm10716201 https://exchange.xforce.ibmcloud.com/vulnerabilities/126231 • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 5.3EPSS: 0%CPEs: 15EXPL: 0

CVE-2017-1488

https://notcve.org/view.php?id=CVE-2017-1488

An undisclosed vulnerability in Jazz common products exists with potential for information disclosure. IBM X-Force ID: 128627. Existe una vulnerabilidad no conocida en los productos comunes de Jazz que podría permitir la divulgación de información. IBM X-Force ID: 128627. • https://exchange.xforce.ibmcloud.com/vulnerabilities/128627 https://www-prd-trops.events.ibm.com/node/715709 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •