Lucene search
K

3 matches found

Cvelist
Cvelist
added 2014/02/25 9:0 p.m.21 views

CVE-2014-0842

The account-creation functionality in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 places the new user's default password within the creation page, which allows remote attackers to obtain sensitive information by reading the HTML source code...

6AI score0.01173EPSS
Exploits1References2
CVE
CVE
added 2014/02/25 9:0 p.m.42 views

CVE-2014-0842

The CVE-2014-0842 vulnerability affects IBM Rational Focal Point 6.4.x and 6.5.x prior to 6.5.2.3, and 6.6.x prior to 6.6.1. The account-creation page places the new user’s default password in the HTML source, allowing remote attackers to read sensitive credentials via page source inspection. Imp...

5CVSS6.2AI score0.01173EPSS
Exploits1References2Affected Software1
seebug.org
seebug.org
added 2014/02/25 12:0 a.m.61 views

IBM Rational Focal Point未明多个安全漏洞

CVE ID:CVE-2014-0839、CVE-2014-0840、CVE-2014-0842、CVE-2014-0843、CVE-2014-0853 IBM Rational Focal Point是IBM Rational基于Web的产品管理系统,内置了面向客户和市场的产品管理流程,提供产品管理过程中的工作流自动化、信息相关性分析、信息统计分析以及信息的优先级分析功能。 IBM Rational Focal Point存在多个安全漏洞: 1,不正确过滤部分用户输入,允许远程攻击者利用漏洞注入恶意脚本或HTML代码,当恶意数据被查看时,可获取敏感信息或劫持用户会话。...

5CVSS6.6AI score0.01173EPSS
Exploits1
Rows per page
Query Builder