3 matches found
CVE-2013-5391
CVE-2013-5391 affects IBM Worklight and Mobile Foundation on Android, where improper initialization of the PRNG and use of the Java Cryptography Architecture in Worklight programs can weaken cryptographic protection. Affected products include IBM Worklight Consumer/Enterprise Editions 5.0.x prior...
CVE-2017-1500
IBM Worklight/MobileFirst Platform Foundation is affected by CVE-2017-1500: a Reflected XSS in the RESTful Web Api authorization function where the scope parameter can reflect arbitrary JavaScript if a realm not defined in authenticationConfig.xml is used, potentially enabling credential disclosu...
CVE-2014-0888
IBM Worklight Foundation 5.x and 6.x prior to 6.2.0.0 are affected by CVE-2014-0888, which allows bypassing the client-side application authenticity verification under certain conditions. Affected products/versions include Worklight Foundation and IBM Mobile Foundation Consumer/Enterprise Edition...