Curam Social Program Management Security Vulnerabilities and Issues — Curam Social Program Management CVE List

Lucene search

IbmCuram Social Program Management

2 matches found

CVE•added 2017/06/28 6:29 p.m.•42 views

CVE-2017-1106

IBM Curam Social Program Management 5.2, 6.0, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...

5.4CVSS5.2AI score0.00253EPSS

CVE•added 2017/06/08 4:29 p.m.•36 views

CVE-2014-4843

Curam Universal Access in IBM Curam Social Program Management (SPM) 6.0 SP2 before EP26, 6.0.4 before 6.0.4.6, and 6.0.5 before 6.0.5.5 iFix5 allows remote attackers to obtain sensitive information about internal caseworker usernames via vectors related to a URL.

5.3CVSS4.8AI score0.00156EPSS