Lucene search
K
IbmReference Data Management

6 matches found

CVE
CVE
added 2021/01/08 8:40 p.m.87 views

CVE-2020-4697

CVE-2020-4697 is a cross-site scripting vulnerability in IBM Jazz Foundation and related IBM Engineering products (notably IBM Engineering Workflow Management). The Web UI can be affected by an attacker embedding arbitrary JavaScript, potentially leading to credentials disclosure within a trusted...

5.4CVSS5.1AI score0.00554EPSS
CVE
CVE
added 2021/01/08 8:40 p.m.83 views

CVE-2020-4544

IBM CVE-2020-4544 describes an information-disclosure vulnerability in IBM Jazz Foundation where a remote attacker could obtain sensitive data from detailed technical error messages returned by the browser. The issue affects IBM Jazz Foundation products within the IBM Engineering Lifecycle Manage...

4.3CVSS4.4AI score0.00982EPSS
CVE
CVE
added 2021/01/08 8:40 p.m.83 views

CVE-2020-4733

The CVE-2020-4733 entry corresponds to a cross-site scripting vulnerability in IBM Jazz Foundation/Engineering products (IBM Engineering Test Management and related Web UI components). The IBM Security Bulletin lists affected products and versions, noting that an attacker could embed arbitrary Ja...

5.4CVSS5.1AI score0.00554EPSS
CVE
CVE
added 2021/01/08 8:40 p.m.82 views

CVE-2020-4487

Summary: The CVE-2020-4487 issue affects IBM Jazz Foundation and related IBM Engineering Lifecycle Management products (e.g., ELM, DOORS Next, ENI, EWM, RTC, RMM, RDM, RQM, ELN) where a remote attacker could obtain sensitive information from a detailed technical error message returned by a browse...

4.3CVSS4.4AI score0.00982EPSS
CVE
CVE
added 2021/01/08 8:40 p.m.75 views

CVE-2020-4691

CVE-2020-4691 is an XSS vulnerability in IBM Jazz Foundation products (and related IBM Engineering Workflow Management components) where an attacker could embed arbitrary JavaScript in the Web UI, potentially exposing credentials in a trusted session. The connected IBM security bulletin lists aff...

5.4CVSS5.1AI score0.00554EPSS
CVE
CVE
added 2020/07/16 3:5 p.m.51 views

CVE-2019-4748

CVE-2019-4748 affects IBM Jazz Team Server based Applications. The vulnerability is a cross-site scripting issue in the Web UI that could allow an attacker to inject arbitrary JavaScript, potentially leading to credentials disclosure within a trusted session. The IBM Security Bulletin lists multi...

5.4CVSS5.2AI score0.00561EPSS