Page 19 of 178 results (0.004 seconds)

CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0

CVE-2020-4384

https://notcve.org/view.php?id=CVE-2020-4384

IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 179265. IBM InfoSphere Information Server versiones 11.3, 11.5 y 11.7, es vulnerable a un ataque de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios insertar código JavaScript arbitrario en la Interfaz de Usuario web, alterando así la funcionalidad prevista conllevando a una divulgación de credenciales dentro de una sesión confiable. • https://exchange.xforce.ibmcloud.com/vulnerabilities/179265 https://www.ibm.com/support/pages/node/6202417 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2020-4347

https://notcve.org/view.php?id=CVE-2020-4347

IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could be subject to attacks based on privilege escalation due to inappropriate file permissions for files used by WebSphere Application Server Network Deployment. IBM X-Force ID: 178412. El IBM InfoSphere Information Server versiones 11.3, 11.5 y 11.7, podría ser objeto de ataques basados en una escalada de privilegios debido a permisos de archivo inapropiados para archivos utilizados por WebSphere Application Server Network Deployment. IBM X-Force ID: 178412. • https://exchange.xforce.ibmcloud.com/vulnerabilities/178412 https://www.ibm.com/support/pages/node/6191679 • CWE-732: Incorrect Permission Assignment for Critical Resource •

CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0

CVE-2020-4162

https://notcve.org/view.php?id=CVE-2020-4162

IBM InfoSphere Information Server 11.5 and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 174342. El IBM InfoSphere Information Server versiones 11.5 y 11.7, es vulnerable a un ataque de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios insertar código JavaScript arbitrario en la Interfaz de Usuario Web, alterando así la funcionalidad prevista, conllevando potencialmente a una divulgación de credenciales dentro de una sesión confiable. • https://exchange.xforce.ibmcloud.com/vulnerabilities/174342 https://www.ibm.com/support/pages/node/5690451 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 0

CVE-2013-0507

https://notcve.org/view.php?id=CVE-2013-0507

IBM InfoSphere Information Server 8.1, 8.5, 8.7, 9.1 has a Session Fixation Vulnerability IBM InfoSphere Information Server versiones 8.1, 8.5, 8.7, 9.1, presenta una Vulnerabilidad de Fijación de Sesión. • http://www.securityfocus.com/bid/59815 • CWE-384: Session Fixation •

CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-4237

https://notcve.org/view.php?id=CVE-2019-4237

A Cross-Frame Scripting vulnerability in IBM InfoSphere Information Server 11.3, 11.5, and 11.7 can allow an attacker to load the vulnerable application inside an HTML iframe tag on a malicious page. IBM X-Force ID: 159419. Una vulnerabilidad Cross-Frame Scripting en IBM InfoSphere Information Server versiones 11.3, 11.5, y 11.7 puede permitir que un atacante cargue la aplicación vulnerable en una etiqueta iframe HTML en una página maliciosa. ID de IBM X-Force: 159419. • https://exchange.xforce.ibmcloud.com/vulnerabilities/159419 https://www.ibm.com/support/docview.wss?uid=ibm10879825 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •