Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 5:13 a.m.17 views

Security Bulletin: Multiple security vulnerabilities affect the Lifecycle Query Engine (LQE) that is shipped with Jazz Reporting Service (CVE-2016-0316, CVE-2016-0317, CVE-2016-0318, CVE-2016-0319)

Summary There are multiple security vulnerabilities in the Lifecycle Query Engine LQE shipped with Jazz Reporting Service. Vulnerability Details CVEID: CVE-2016-0316 DESCRIPTION: IBM Jazz Reporting Service is vulnerable to cross-site scripting, caused by improper validation of user-supplied input...

7.5CVSS0.8AI score0.00547EPSS
Exploits0Affected Software1
CVE
CVEadded 2016/11/25 8:0 p.m.38 views

CVE-2016-0318

CVE-2016-0318 affects IBM Jazz Reporting Service’s Lifecycle Query Engine (LQE) shipped with Jazz Reporting Service, specifically versions 6.0 and 6.0.1 prior to 6.0.1 iFix006. The root cause is that the Session ID is not destroyed upon user logout, enabling a logged-in attacker to reuse an unatt...

6CVSS5.6AI score0.0036EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2016/11/25 8:0 p.m.21 views

CVE-2016-0318

Lifecycle Query Engine LQE in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6.0.1 iFix006 does not destroy a Session ID upon a logout action, which allows remote attackers to obtain access by leveraging an unattended workstation...

4.9AI score0.0036EPSS
Exploits0References2
Rows per page
Query Builder