42 matches found
EUVD-2016-9774
Malware in sbrugna...
EUVD-2016-7052
Malware in sbrugna...
Security Bulletin: IBM Emptoris Supplier Lifecycle Management vulnerable to unspecified vulnerability due to Oracle Database Server (CVE-2021-35576)
Summary IBM Emptoris Supplier Lifecycle Management supports Oracle database server as an application backend database. Oracle database server is vulnerable to an unspecified vulnerability that has been addressed. Vulnerability Details CVEID: CVE-2021-35576 DESCRIPTION: An unspecified vulnerabilit...
Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Management (CVE-2021-2332)
Summary IBM Emptoris Supplier Lifecycle Management supports Oracle database server as a backend database. The remediated version of Oracle database server has been certified by IBM Emptoris Supplier Lifecycle Management. Vulnerability Details CVEID: CVE-2021-2332 DESCRIPTION: An unspecified...
Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Management (CVE-2021-35557)
Summary IBM Emptoris Supplier Lifecycle Management supports Oracle database server as a backend database. The remediated version of Oracle database server has been certified by IBM Emptoris Supplier Lifecycle Management. Vulnerability Details CVEID: CVE-2021-35557 DESCRIPTION: An unspecified...
Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Management (CVE-2021-35558)
Summary IBM Emptoris Supplier Lifecycle Management supports Oracle database server as a backend database. The remediated version of Oracle database server has been certified by IBM Emptoris Supplier Lifecycle Management. Vulnerability Details CVEID: CVE-2021-35558 DESCRIPTION: An unspecified...
Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Management (CVE-2021-35619)
Summary An Oracle Database Server vulnerability affects IBM Emptoris Supplier Lifecycle Management. The issue has been addressed. Vulnerability Details CVEID: CVE-2021-35619 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Java VM component could allow an...
Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Mgmt (CVE-2021-2329)
Summary An Oracle database server vulnerability has been addressed by IBM Emptoris Supplier Lifecycle Mgmt. Vulnerability Details CVEID: CVE-2021-2329 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the XML DB component could allow an authenticated attacker to take...
Security Bulletin: Multiple Oracle Database Server Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Management
Summary Multiple Oracle database server security vulnerabilities affect IBM Emptoris Supplier Lifecycle Management. Vulnerability Details CVEID: CVE-2021-2245 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the Database - Enterprise Edition Unified Audit component...
Security Bulletin: Detailed Error Messages are Revealed in IBM Emptoris Supplier Lifecycle Management
Summary IBM Emptoris Supplier Lifecycle Management product reveals detailed error messages in certain features. Vulnerability Details CVEID: CVE-2018-1942 DESCRIPTION: IBM Emptoris Supplier Lifecycle Management could disclose highly sensitive information in detailed error messages. CVSS Base Scor...
Security Bulletin: Multiple Vulnerabilities in IBM Java SDK Affect IBM Emptoris Strategic Supply Management Suite of Products and IBM Emptoris Services Procurement
Summary The IBM Emptoris Strategic Supply Management suite of products are affected by multiple security vulnerabilities that exist in the IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. The security bulletin includes issues that were disclosed as part of th...
Security Bulletins for Emptoris Supplier Lifecycle Management
Question Security Bulletins for Emptoris Supplier Lifecycle Management Answer This article tracks all Security Bulletins for Emptoris Supplier Lifecycle Management. IBM's Product Security Incident Response Team PSIRT follows the NIST guidelines for determining the severity rating of the reported...
Security Bulletin: Multiple vulnerabilities addressed in the IBM Emptoris Supplier Lifecycle Management product (CVE-2016-8949, CVE-2017-1448, CVE-2016-6121)
Summary The security bulletin includes multiple vulnerabilities found and addressed in IBM Emptoris Supplier Lifecycle Management across various versions of the product. Vulnerability Details CVEID: CVE-2016-8949 DESCRIPTION: IBM Emptoris Supplier Lifecycle Management could allow a remote attacke...
IBM Emptoris Supplier Lifecycle Management Cross-Site Scripting Vulnerability (CNVD-2017-32480)
IBM Emptoris Supplier Lifecycle Management is a suite of automated management solutions from IBM USA. The product automates all business processes associated with suppliers. A cross-site scripting vulnerability exists in IBM Emptoris Supplier Lifecycle Management. A remote attacker can exploit th...
CVE-2017-1098
IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
Cross site scripting
IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
CVE-2017-1098
IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
CVE-2017-1098
IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...
CVE-2017-1098
CVE-2017-1098 affects IBM Emptoris Supplier Lifecycle Management, specifically the 10.1.0.x line. The connected documents confirm a cross-site scripting vulnerability in the Web UI that could enable an attacker to inject arbitrary JavaScript, potentially altering functionality and leading to cred...
IBM Emptoris Supplier Lifecycle Management Cross-Site Scripting Vulnerability (CNVD-2017-22797)
IBM Emptoris Supplier Lifecycle Management is a suite of automated management solutions from IBM USA. The product automates all business processes associated with suppliers. A cross-site scripting vulnerability exists in IBM Emptoris Supplier Lifecycle Management versions 10.0.x through 10.1.x. A...