Page 6 of 29 results (0.004 seconds)

CVSS: 4.4EPSS: 0%CPEs: 4EXPL: 0

Unspecified vulnerability in IBM Rational Requirements Composer before 4.0.4 makes it easier for local users to gain privileges via unknown vectors. Vulnerabilidad sin especificar en IBM Rational Requirements Composer anterior a 4.0.4 facilita a atacantes locales escalar privilegios través de vectores desconocidos • http://www-01.ibm.com/support/docview.wss?uid=swg21645927 https://exchange.xforce.ibmcloud.com/vulnerabilities/84689 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0

Unspecified vulnerability in IBM Rational Requirements Composer before 4.0.4 makes it easier for remote attackers to discover credentials via unknown vectors. Vulnerabilidad sin especificar en IBM Rational Requirements Composer anterior a 4.0.4 facilita a atacantes remotos descubrir credenciales a través de vectores desconocidos • http://www-01.ibm.com/support/docview.wss?uid=swg21645927 https://exchange.xforce.ibmcloud.com/vulnerabilities/84708 • CWE-255: Credentials Management Errors •

CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0

IBM Rational Requirements Composer before 4.0.4 does not properly perform authentication, which has unspecified impact and remote attack vectors. IBM Rational Requirements Composer anterior a v4.0.4 no realiza una autenticación adecuada, lo cual tiene un impacto no especificado y vectores de ataque remotos. • http://www-01.ibm.com/support/docview.wss?uid=swg21645927 https://exchange.xforce.ibmcloud.com/vulnerabilities/84709 • CWE-287: Improper Authentication •

CVSS: 4.9EPSS: 0%CPEs: 4EXPL: 0

Open redirect vulnerability in IBM Rational Requirements Composer before 4.0.4 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL. Vulnerabilidad de redirección abierta en IBM Rational Requirements Composer anterior a v4.0.4 permite a usuarios autenticados remotamente redireccionar a usuarios a sitios web arbitrarios y llevar a cabo ataques de phishing a través de una URL manipulada. • http://www-01.ibm.com/support/docview.wss?uid=swg21645927 https://exchange.xforce.ibmcloud.com/vulnerabilities/84688 • CWE-20: Improper Input Validation •