Jazz Reporting Service@* Security Vulnerabilities and Issues — Jazz Reporting Service@* CVE List

Lucene search

IbmJazz Reporting Service*

4 matches found

CVE•added 2019/05/29 3:29 p.m.•62 views

CVE-2019-4184

IBM Jazz Reporting Service 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158...

5.4CVSS5.2AI score0.00229EPSS

CVE•added 2019/04/29 5:29 p.m.•41 views

CVE-2018-2004

IBM Jazz Reporting Service (JRS) 6.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...

5.4CVSS5.2AI score0.00229EPSS

CVE•added 2019/01/08 5:0 p.m.•39 views

CVE-2018-1918

IBM Jazz Reporting Service (JRS) 6.0.3, 6.0.4, 6.0.5, and 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IB...

5.4CVSS5.2AI score0.00229EPSS

CVE•added 2018/11/16 4:0 p.m.•37 views

CVE-2018-1639

The Report Builder of Jazz Reporting Service 5.0 through 5.0.2 and 6.0 through 6.0.6 could allow an authenticated user to obtain sensitive information beyond its assigned privileges. IBM X-Force ID: 144579.

6.5CVSS6AI score0.00162EPSS