7 matches found
EUVD-2016-7034
Malware in sbrugna...
Security Bulletin: IBM Disposal and Governance Management for IT and IBM Global Retention Policy and Schedule Management vulnerable to cross-site request forgery (CSRF)
Summary The "notice confirmation" functionality in IBM Disposal and Governance Management for IT and IBM Global Retention Policy and Schedule Management, components of IBM Atlas Policy Suite, is impacted by a vulnerability that allows cross-site request forgery. Both products have addressed this...
Security Bulletin: OpenSource Apache Taglibs Vulnerability affects Atlas Policy Suite (CVE-2015-0254)
Summary Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection XXE error when processing XML data. Vulnerability Details CVEID: CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs could allow a remote attacker to...
CVE-2016-6100
IBM Disposal and Governance Management for IT and IBM Global Retention Policy and Schedule Management, components of IBM Atlas Policy Suite 6.0.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that th...
CVE-2013-6321
SQL injection vulnerability in IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Policy and Schedule Management 6.0.1.5 and earlier and 6.0.2 in IBM Atlas Suite aka Atlas Policy Suit...
CVE-2013-6321
SQL injection vulnerability (CVE-2013-6321) affects IBM Atlas Suite components (Atlas eDiscovery Process Management 6.0.1.5 and earlier/6.0.2; Disposal and Governance Management for IT 6.0.1.5 and earlier/6.0.2; Global Retention Policy and Schedule Management 6.0.1.5 and earlier/6.0.2). Root caus...
CVE-2013-6334
CVE-2013-6334 affects IBM Atlas Suite components (Atlas eDiscovery Process Management 6.0.1.5 and earlier, 6.0.2; Disposal and Governance Management for IT 6.0.1.5 and earlier, 6.0.2; Global Retention Policy and Schedule Management 6.0.1.5 and earlier, 6.0.2). The issue is improper session valida...