18 matches found
Security Bulletin: Multiple vulnerabilities in IBM® Java™ SDK and IBM® Java™ Runtime that affect IBM® Intelligent Operations Center products (CVE-2020-2654)
Summary There are multiple vulnerabilities in IBM® SDK, Java™ Technology Edition versions 7 and 8, and IBM® Java™ Runtime versions 7 and 8 that are used by IBM® Intelligent Operations Center, IBM® Intelligent Operations Center for Emergency Management, IBM® Intelligent Water, and IBM® Water...
CVE-2020-4317
IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center IOC, and IBM Water Operations for Waternamics are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...
CVE-2020-4318
IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center IOC, and IBM Water Operations for Waternamics are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...
Cross site scripting
IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center IOC, and IBM Water Operations for Waternamics are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...
CVE-2020-4318
Summary: CVE-2020-4318 is a stored cross-site scripting vulnerability in IBM Intelligent Operations Center (IOC) for Emergency Management, IOC, and IBM Water Operations for Waternamics. The issue stems from inadequate input validation in the web UI that allows injection of arbitrary JavaScript, p...
CVE-2020-4317
CVE-2020-4317 affects IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center (IOC), and IBM Water Operations for Waternamics. The vulnerability is a cross-site scripting (stored XSS) issue in the Web UI that can allow embedding arbitrary JavaScript, potentially ...
Security Bulletin: Multiple vulnerabilities in IBM® Java™ SDK and IBM® Java™ Runtime that affect IBM® Intelligent Operations Center products - Includes Oracle Jan 2020 CPU minus CVE-2020-2585, CVE-2020-2654, and CVE-2020-2590
Summary There are multiple vulnerabilities in IBM® SDK, Java™ Technology Edition versions 7 and 8, and IBM® Java™ Runtime versions 7 and 8 that are used by IBM® Intelligent Operations Center, IBM® Intelligent Operations Center for Emergency Management, IBM® Intelligent Water, and IBM® Water...
Security Bulletin: A Vulnerability in IBM® Java™ SDK and IBM® Java™ Runtime that affect IBM® Intelligent Operations Center products (CVE-2019-2949)
Summary There is a vulnerability in IBM® SDK, Java™ Technology Edition versions 7 and 8, and IBM® Java™ Runtime versions 7 and 8 that are used by IBM® Intelligent Operations Center, IBM® Intelligent Operations Center for Emergency Management, IBM® Intelligent Water, and IBM® Water Operations for...
Security Bulletin: A security vulnerability has been identified in WebSphere® Application Server shipped with IBM® Intelligent Operations Center (CVE-2020-4329)
Summary IBM WebSphere® Application Server is shipped with IBM® Intelligent Operations Center. Information about a security vulnerability affecting IBM WebSphere® Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...
Security Bulletin: A security vulnerability has been identified in WebSphere® Application Server shipped with IBM® Intelligent Operations Center (CVE-2019-4441)
Summary IBM WebSphere® Application Server is shipped with IBM® Intelligent Operations Center. Information about a security vulnerability affecting IBM WebSphere® Application Server has been published in a security bulletin. Vulnerability Details Consult the security bulletin, Security Bulletin:...
CVE-2019-4321
IBM Intelligent Operations Center V5.1.0 - V5.2.0, IBM Intelligent Operations Center for Emergency Management V5.1.0 - V5.1.0.6, and IBM Water Operations for Waternamics V5.1.0 - V5.2.1.1 does not require that users should have strong passwords by default, which makes it easier for attackers to...
CVE-2019-4321
CVE-2019-4321 affects IBM Intelligent Operations Center (IOC) and IBM Water Operations for Waternamics, with affected versions IOC V5.1.0–V5.2.0, IOC for Emergency Management V5.1.0–V5.1.0.6, and Waternamics V5.1.0–V5.2.1.1. The root cause is a default configuration that does not require strong p...
CVE-2019-4321
IBM Intelligent Operations Center V5.1.0 - V5.2.0, IBM Intelligent Operations Center for Emergency Management V5.1.0 - V5.1.0.6, and IBM Water Operations for Waternamics V5.1.0 - V5.2.1.1 does not require that users should have strong passwords by default, which makes it easier for attackers to...
PT-2019-17033 · Ibm · Ibm Intelligent Operations Center For Emergency Management +2
Name of the Vulnerable Software and Affected Versions: IBM Intelligent Operations Center versions 5.1.0 through 5.2.0 IBM Intelligent Operations Center for Emergency Management versions 5.1.0 through 5.1.0.6 IBM Water Operations for Waternamics versions 5.1.0 through 5.2.1.1 Description: The issu...
IBM Water Operations for Waternamics and IBM Intelligent Operations Center Cross-Site Scripting Vulnerabilities
IBM Intelligent Operations Center IOC and IBM Water Operations for Waternamics are both products of IBM Corporation, U.S.A. IBM Intelligent Operations Center is a suite of city operations solutions. IBM Intelligent Operations Center is a suite of city operations solutions with features such as da...
IBM Water Operations for Waternamics and IBM Intelligent Operations Center Information Disclosure Vulnerability
IBM Intelligent Operations Center IOC and IBM Water Operations for Waternamics are both products of IBM Corporation, U.S.A. IBM Intelligent Operations Center is a suite of city operations solutions. IBM Intelligent Operations Center is a suite of city operations solutions with features such as da...
Security Bulletin: IBM® Intelligent Operations Center does not correctly validate file types before uploading files (CVE-2019-4069)
Summary IBM® Intelligent Operations Center does not validate the content of CSV files that are uploaded by authenticated users. The upload of unvalidated CSV files by authenticated users might be a starting point for further attacks if it is combined with file renaming or other inclusion...
Security Bulletin: Cross-site scripting vulnerability in IBM® Intelligent Operations Center (CVE-2019-4070)
Summary IBM® Intelligent Operations Center does not sanitize all user-controlled inputs and so it is possible to inject malicious code into the application. Vulnerability Details CVEID: CVE-2019-4070 DESCRIPTION: IBM Intelligent Operations Center IOC is vulnerable to cross-site scripting. This...