Lucene search

Spss Analytic Server Security Vulnerabilities

cve

CVE-2014-0920

IBM SPSS Analytic Server 1.0 before IF002 and 1.0.1 before IF004 logs cleartext passwords, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

5.7AI Score

0.001EPSS

2014-04-10 11:55 PM

cve

CVE-2018-1772

IBM SPSS Analytic Server 3.1.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148689.

5.4CVSS

5.2AI Score

0.001EPSS

2019-01-15 07:29 PM