553 matches found
iOS Sandbox Vulnerability Puts Enterprise Data at Risk
"Change is the only constant thing," as it is known could be now modified as "Change is the only constant thing," where the means Terms and conditions apply! A change Mobile Device Management solutions-MDM, Bring Your Own Device-BYOD was brought to the organizations, which later became necessitie...
CVE-2015-1980
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors...
CVE-2015-1982
CVE-2015-1982 affects IBM InfoSphere Master Data Management Collaborative Edition versions 9.1, 10.1, 11.0, 11.3, and 11.4 prior to FP03. The vulnerability allows remote authenticated users to obtain sensitive information by sending a crafted request that causes an error message revealing the ful...
CVE-2015-1968
IBM InfoSphere Master Data Management Collaborative Edition (versions 9.1, 10.1, 11.0, 11.3, 11.4) is affected by a Cross-Site Scripting (XSS) vulnerability caused by improper validation of user-supplied input. A remote authenticated attacker can craft a URL that, when clicked by a victim, execut...
CVE-2015-1982
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to obtain sensitive information via a crafted request, which reveals the full path in an error message...
CVE-2015-1980
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors...
CVE-2015-1968
Cross-site scripting XSS vulnerability in IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2015-1984
CVE-2015-1984 affects IBM InfoSphere Master Data Management Collaborative Edition (versions 9.1, 10.1, 11.0, 11.3, 11.4) prior to FP03. A remote authenticated user could bypass access control to read other users’ profiles (e.g., usernames) via unspecified vectors, enabling brute-force password ta...
CVE-2015-1945
Unspecified vulnerability in the Reference Data Management component in IBM InfoSphere Master Data Management 10.1, 11.0, 11.3 before FP3, and 11.4 allows remote authenticated users to gain privileges via unknown vectors...
CVE-2015-1909
The XML parser in the Reference Data Management component in the server in IBM InfoSphere Master Data Management MDM 10.1 before IF1, 11.0 before FP3, 11.3, and 11.4 before FP2 allows remote attackers to read arbitrary files, and consequently obtain administrative access, via an external entity...
Xxe
The XML parser in the Reference Data Management component in the server in IBM InfoSphere Master Data Management MDM 10.1 before IF1, 11.0 before FP3, 11.3, and 11.4 before FP2 allows remote attackers to read arbitrary files, and consequently obtain administrative access, via an external entity...
CVE-2015-1909
IBM InfoSphere MDM Reference Data Management is vulnerable to an XML External Entity (XXE) attack due to a weakly configured XML parser. Affected are the Reference Data Management server components for versions: 10.1 before IF1, 11.0 before FP3, 11.3, and 11.4 before FP2. Exploitation could allow...
CVE-2015-1910
Cross-site scripting XSS vulnerability in the Reference Data Management component in the server in IBM InfoSphere Master Data Management MDM 10.1 before IF1, 11.0 before FP3, and 11.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...
CVE-2015-1910
CVE-2015-1910 is an XSS vulnerability in IBM InfoSphere MDM Reference Data Management. The flaw affects IBM InfoSphere MDM Reference Data Management on the server side in versions 10.1 (before IF1), 11.0 (before FP3), and 11.3, allowing remote authenticated users to inject arbitrary script via a ...
Unspecified Cross-Site Scripting Vulnerability in IBM InfoSphere MDM Reference Data Management
IBM InfoSphere MDM Reference Data Management provides a range of capabilities essential for seamlessly managing reference data in the information world across different business domains, including comprehensive authoring and lifecycle management capabilities, a version control model, role-based...
CVE-2014-8899
Cross-site scripting XSS vulnerability in the Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1...
CVE-2014-8896
The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modi...
Design/Logic Flaw
The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modi...
Cross site scripting
Cross-site scripting XSS vulnerability in the Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1...
CVE-2014-8896
IBM InfoSphere Master Data Management – Collaborative Edition and related Server for Product Information Management are affected by CVE-2014-8896, where an authenticated user could modify the administrator’s credentials and gain privileges. Affected products/versions include Collaborative Edition...