Tririga Application Platform@4.0 Security Vulnerabilities and Issues — Tririga Application Platform@4.0 CVE List

Lucene search

IbmTririga Application Platform4.0

3 matches found

CVE•added 2023/07/31 2:15 a.m.•51 views

CVE-2020-4868

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744.

5.3CVSS4.4AI score0.00051EPSS

CVE•added 2023/04/07 2:15 p.m.•49 views

CVE-2023-27876

IBM TRIRIGA 4.0 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 249975.

7.1CVSS6.9AI score0.00036EPSS

CVE•added 2023/04/07 2:15 p.m.•38 views

CVE-2022-43914

IBM TRIRIGA Application Platform 4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 241036.

5.4CVSS4.8AI score0.00135EPSS