CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2021-39059
https://notcve.org/view.php?id=CVE-2021-39059
11 May 2022 — IBM Jazz Foundation (IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 214619. IBM Jazz Foundation (IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1 y 7.0.2) es vulnerable a un ataque de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios i... • https://exchange.xforce.ibmcloud.com/vulnerabilities/214619 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-4457
https://notcve.org/view.php?id=CVE-2019-4457
19 Feb 2020 — IBM Jazz Foundation 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 could allow an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 163654. IBM Jazz Foundation versiones 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6 y 6.0.6.1, podría permitir a un usuario autenticado obtener información confidencial que podría ser usada en futuros ataques contra el sistema. ID de IBM X-Force: 163654. • https://exchange.xforce.ibmcloud.com/vulnerabilities/163654 •