Curam Social Program Management@7.0.1 Security Vulnerabilities and Issues — Curam Social Program Management@7.0.1 CVE List

Lucene search

IbmCuram Social Program Management7.0.1

3 matches found

CVE•added 2018/12/11 4:29 p.m.•43 views

CVE-2018-1654

IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, 7.0.1, and 7.0.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displ...

6.8CVSS5.8AI score0.0019EPSS

CVE•added 2018/12/11 4:29 p.m.•33 views

CVE-2018-1900

IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, 7.0.1, and 7.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted s...

5.4CVSS5.2AI score0.00229EPSS

CVE•added 2018/01/19 2:29 p.m.•32 views

CVE-2018-1362

IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 within Citizen Portal could allow an authenticated user to withdraw other user's submitted applications from the system and possibly obtain privileges. IBM X-Force ID: 137380.

6CVSS4.9AI score0.00256EPSS