Security Bulletin: IBM Db2 Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Mgmt (CVE-2021-29702)

Summary An IBM Db2 Server vulnerability affects IBM Emptoris Supplier Lifecycle Mgmt. Vulnerability Details CVEID: CVE-2021-29702 DESCRIPTION: Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.1.4 and 11.5.5 is vulnerable to a denial of service as the server terminates abnormally whe...

CVE-2017-1098

CVE-2017-1098 affects IBM Emptoris Supplier Lifecycle Management, specifically the 10.1.0.x line. The connected documents confirm a cross-site scripting vulnerability in the Web UI that could enable an attacker to inject arbitrary JavaScript, potentially altering functionality and leading to cred...

CVE-2016-6118

IBM Emptoris Supplier Lifecycle Management 10.1.0.x is affected by a Cross-Site Scripting vulnerability (CVE-2016-6118). The issue allows an attacker to inject arbitrary JavaScript into the Web UI, potentially altering functionality and leading to credential exposure within a trusted session. Thi...