IBM Tivoli Netcool Impact Cross-Site Scripting Vulnerability (CNVD-2020-20671)

IBM Tivoli Netcool Impact is a suite of network management software from IBM in the United States. The software has the ability to automate business-critical functions and provide a platform that provides unified access to real-time data, events and indicators. A cross-site scripting vulnerabilit...

CVE-2020-4235

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force I...

Cross site request forgery (csrf)

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 175411...

CVE-2020-4239

IBM Tivoli Netcool Impact 7.1.0.0–7.1.0.17 is affected by CVE-2020-4239, a remote information-disclosure flaw where detailed browser error messages reveal sensitive data. Root cause: information leakage through verbose errors. Impact: potential exposure of confidential information. Remediation: u...

CVE-2020-4237

The CVE-2020-4237 issue affects IBM Tivoli Netcool Impact 7.1.0.0–7.1.0.17, where a cross-site request forgery (CSRF) vulnerability could allow an attacker to perform malicious, unauthorized actions on behalf of a trusted user. The IBM security bulletin notes the remediation is to upgrade to vers...

CVE-2020-4237

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 175410...

CVE-2020-4236

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 could allow an authenticated user to cause a denial of service due to improper content parsing in the project management module. IBM X-Force ID: 175409...

IBM Tivoli Netcool Impact Cross-Site Request Forgery Vulnerability

IBM Tivoli Netcool Impact is a suite of network management software from IBM in the United States. The software has the ability to automate business-critical functions and provide a platform that provides unified access to real-time data, events and indicators. A cross-site request forgery...

Security Bulletin: IBM Tivoli Netcool Impact is affected by an Apache Camel vulnerability (CVE-2019-0194)

Summary IBM Tivoli Netcool Impact has addressed the following Apache Camel vulnerability. Vulnerability Details CVEID: CVE-2019-0194 DESCRIPTION: Apache Camel's File is vulnerable to directory traversal. Camel 2.21.0 to 2.21.3, 2.22.0 to 2.22.2, 2.23.0 and the unsupported Camel 2.x 2.19 and earli...