Emptoris Strategic Supply Management@* Security Vulnerabilities and Issues — Emptoris Strategic Supply Management@* CVE List

Lucene search

IbmEmptoris Strategic Supply Management*

3 matches found

CVE•added 2021/01/07 6:15 p.m.•40 views

CVE-2020-4895

IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

6.4CVSS5.1AI score0.00105EPSS

CVE•added 2021/01/07 6:15 p.m.•37 views

CVE-2020-4893

IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 transmits sensitive information in HTTP GET request parameters. This may lead to information disclosure via man in the middle methods. IBM X-Force ID: 190984.

5.9CVSS5.3AI score0.00095EPSS

CVE•added 2021/01/07 6:15 p.m.•37 views

CVE-2020-4898

IBM Emptoris Strategic Supply Management 10.1.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 190989.

7.5CVSS7.2AI score0.00112EPSS