Smartcloud Analytics Log Analysis Security Vulnerabilities and Issues — Smartcloud Analytics Log Analysis CVE List

Lucene search

IbmSmartcloud Analytics Log Analysis

3 matches found

cve•added 2014/04/24 10:55 a.m.•45 views

CVE-2013-6738

Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 before 1.2.0.0-CSI-SCALA-IF0003 allows remote attackers to inject arbitrary web script or HTML via an invalid query parameter in a response from an OAuth authorization endpoint.

4.3CVSS7.4AI score0.00478EPSS

cve•added 2019/11/22 4:15 p.m.•43 views

CVE-2019-4216

IBM SmartCloud Analytics 1.3.1 through 1.3.5 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM X-Force ID: 159187.

4.9CVSS5.1AI score0.0009EPSS

cve•added 2019/11/22 4:15 p.m.•41 views

CVE-2019-4214

IBM SmartCloud Analytics 1.3.1 through 1.3.5 does not set the secure attribute on authorization tokens or session cookies. This could allow an attacker to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 159185.

4.3CVSS4AI score0.00154EPSS