Lucene search
K

151 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/09/14 8:7 p.m.51 views

Security Bulletin: Security Vulnerabilities in IBM® Java SDK July 2021 CPU affect multiple IBM Continuous Engineering products based on IBM Jazz Technology

Summary There are multiple vulnerabilities in IBM® SDK Java Technology Edition from July 2021 CPU that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS...

7.5CVSS0.5AI score0.04008EPSS
Exploits0Affected Software9
CNVD
CNVD
added 2021/06/03 12:0 a.m.5 views

IBM Engineering Lifecycle Optimization - Engineering Insights Cross-Site Scripting Vulnerability

IBM Engineering Lifecycle Optimization - Engineering Insights is a collaborative Web-based application that unlocks engineering data from a variety of lifecycle management applications to give you the information you need to make the best engineering decisions. A cross-site scripting vulnerabilit...

5.4CVSS5.8AI score0.00495EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/03 12:0 a.m.7 views

IBM Engineering Lifecycle Optimization Cross-Site Scripting Vulnerability (CNVD-2021-40858)

IBM Engineering Lifecycle Optimization ELO is an extension of the Engineering Lifecycle Management ELM portfolio from IBM America. They make it easier to collect and analyze data across the development environment to make better decisions. Automate reporting to ensure that the entire organization...

5.4CVSS5.9AI score0.00495EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/06/02 8:40 p.m.23 views

CVE-2020-4977

IBM Engineering Lifecycle Optimization - Publishing is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...

5.4CVSS5.1AI score0.00495EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/01 2:27 p.m.27 views

Security Bulletin: Multiple vulnerabilites affect IBM Jazz Foundation and IBM Engineering products.

Summary There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS Next, IBM Engineering Lifecycle Optimization - Engineeri...

9CVSS1.1AI score0.08665EPSS
Exploits1Affected Software5
CNNVD
CNNVD
added 2021/06/01 12:0 a.m.4 views

IBM Engineering Lifecycle Optimization 跨站脚本漏洞

IBM Engineering Lifecycle Optimization ELO is an extension of the Engineering Lifecycle Management ELM portfolio from IBM America. They make it easier to collect and analyze data across the development environment to make better decisions. Automate reporting to ensure that the entire organization...

5.4CVSS5.6AI score0.00495EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/06/01 12:0 a.m.5 views

IBM Engineering Lifecycle Optimization 跨站脚本漏洞

IBM Engineering Lifecycle Optimization - Engineering Insights is a collaborative Web-based application that unlocks engineering data from a variety of lifecycle management applications to give you the information you need to make the best engineering decisions. A cross-site scripting vulnerabilit...

5.4CVSS5.6AI score0.00495EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2021/01/07 9:30 p.m.33 views

Security Bulletin: Multiple vulnerabilites affect IBM Jazz Foundation and IBM Engineering products.

Summary There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS Next, IBM Engineering Lifecycle Optimization - Engineeri...

5.4CVSS1.2AI score0.00982EPSS
Exploits0Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/01 7:2 p.m.26 views

Security Bulletin: Multiple vulnerabilities affects IBM Jazz Foundation and IBM Engineering products.

Summary There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS Next, IBM Engineering Lifecycle Optimization - Engineeri...

5.4CVSS0.9AI score0.00561EPSS
Exploits0Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/15 7:0 p.m.18 views

Security Bulletin: Session cookie is missing secure attribute and affects IBM Publishing Engine

Summary There is a vulnerability in the session cookie which misses a secure attribute and affects IBM Publishing Engine Vulnerability Details CVEID: CVE-2020-4316 DESCRIPTION: IBM Publishing Engine does not set the secure attribute on authorization tokens or session cookies. Attackers may be abl...

4.7CVSS0.7AI score0.01172EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/07 5:41 p.m.58 views

Security Bulletin: Third party vulnerable library Jackson-Databind affects IBM Engineering Lifecycle Optimization - Publishing

Summary There are some vulnerabilities in the Jackson-Databind library that affects IBM Engineering Lifecycle Optimization - Publishing Vulnerability Details CVEID: CVE-2018-7489 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on the system, caused ...

10CVSS1AI score0.49727EPSS
Exploits4Affected Software1
Rows per page
Query Builder