Engineering Lifecycle Optimization Security Vulnerabilities and Issues — Engineering Lifecycle Optimization CVE List

Lucene search

IbmEngineering Lifecycle Optimization

4 matches found

CVE•added 2021/07/19 4:15 p.m.•51 views

CVE-2021-20507

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: ...

5.4CVSS5.3AI score0.00182EPSS

CVE•added 2021/07/19 4:15 p.m.•43 views

CVE-2020-5031

5.4CVSS5.2AI score0.00164EPSS

CVE•added 2021/07/28 1:15 p.m.•37 views

CVE-2020-4974

IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 192434.

6.5CVSS6.3AI score0.00168EPSS

CVE•added 2021/07/28 1:15 p.m.•37 views

CVE-2020-5004

IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192957.

5.4CVSS5.3AI score0.00346EPSS