Bigfix Platform@9.5.5 Security Vulnerabilities and Issues — Bigfix Platform@9.5.5 CVE List

Lucene search

IbmBigfix Platform9.5.5

5 matches found

CVE•added 2017/07/19 8:29 p.m.•53 views

CVE-2017-1224

IBM Tivoli Endpoint Manager uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 123903.

7.5CVSS7.6AI score0.00137EPSS

CVE•added 2017/07/19 8:29 p.m.•47 views

CVE-2017-1203

IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) Platform and Applications is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a t...

6.1CVSS6.7AI score0.00307EPSS

CVE•added 2018/10/12 5:29 a.m.•47 views

CVE-2017-1231

IBM BigFix Platform 9.5 - 9.5.9 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 123910.

7.8CVSS7AI score0.00028EPSS

CVE•added 2017/07/19 8:29 p.m.•43 views

CVE-2017-1223

IBM Tivoli Endpoint Manager could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web sit...

6.1CVSS6.3AI score0.00212EPSS

CVE•added 2017/07/19 8:29 p.m.•39 views

CVE-2017-1218

IBM Tivoli Endpoint Manager is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 123858.

8.8CVSS8.4AI score0.00142EPSS