Infosphere Streams Security Vulnerabilities and Issues — Infosphere Streams CVE List

Lucene search

IbmInfosphere Streams

3 matches found

cve•added 2017/08/10 3:29 p.m.•38 views

CVE-2017-1431

IBM InfoSphere Streams 4.0, 4.1, and 4.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 127632.

5.4CVSS5.2AI score0.00237EPSS

cve•added 2019/03/21 3:59 p.m.•35 views

CVE-2017-1713

IBM InfoSphere Streams 4.2.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 134632.

5.9CVSS5.5AI score0.00096EPSS

cve•added 2016/07/02 2:59 p.m.•27 views

CVE-2016-2867

IBM InfoSphere Streams before 4.0.1.2 and IBM Streams before 4.1.1.1 do not properly implement the runAsUser feature, which allows local users to obtain root group privileges via unspecified vectors.

7CVSS6.4AI score0.00039EPSS