Openpages Grc Platform@6.2.1.0 Security Vulnerabilities and Issues — Openpages Grc Platform@6.2.1.0 CVE List

Lucene search

IbmOpenpages Grc Platform6.2.1.0

6 matches found

CVE•added 2015/10/03 10:59 p.m.•43 views

CVE-2015-0144

Cross-site scripting (XSS) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2014-8916.

3.5CVSS5.2AI score0.00166EPSS

CVE•added 2015/10/03 10:59 p.m.•33 views

CVE-2015-0143

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to obtain sensitive information by reading error messages.

4CVSS5.7AI score0.00158EPSS

CVE•added 2015/10/03 10:59 p.m.•32 views

CVE-2014-8916

3.5CVSS5.2AI score0.00166EPSS

CVE•added 2015/10/03 10:59 p.m.•32 views

CVE-2015-0142

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to cause a denial of service (maintenance-mode transition and data-storage outage) by calling the System Administration Mode function.

4CVSS6.2AI score0.00358EPSS

CVE•added 2015/10/03 10:59 p.m.•31 views

CVE-2015-0141

IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to modify arbitrary user filters via a JSON request.

4CVSS6.3AI score0.00201EPSS

CVE•added 2015/10/03 10:59 p.m.•27 views

CVE-2015-0145

Cross-site request forgery (CSRF) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences.

6.8CVSS6.2AI score0.00103EPSS