|
268361
|
7.5 |
HIGH
Network
|
ibm
|
emptoris_strategic_supply_management
|
IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to a denial of service attack. An attacker can exploit a vulnerability in the authentication features that co…
|
CWE-287
Improper Authentication
|
CVE-2016-8951
|
2024-11-21 12:00 |
2017-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268362
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a re…
|
CWE-601
Open Redirect
|
CVE-2016-8953
|
2024-11-21 12:00 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268363
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8950
|
2024-11-21 12:00 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268364
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8948
|
2024-11-21 12:00 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268365
|
6.1 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a re…
|
CWE-601
Open Redirect
|
CVE-2016-8947
|
2024-11-21 12:00 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268366
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8946
|
2024-11-21 12:00 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268367
|
4.3 |
MEDIUM
Network
|
ibm
|
maximo_asset_management
|
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow an authenticated user to view incorrect item sets that they should not have access to view.
|
CWE-200
Information Exposure
|
CVE-2016-8987
|
2024-11-21 12:00 |
2017-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268368
|
5.5 |
MEDIUM
Local
|
ibm
|
tivoli_storage_manager
|
IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) clients/agents store password information in the Windows Registry in a manner which can be compromised. IBM X-Force ID: 118790.
|
CWE-200
Information Exposure
|
CVE-2016-8939
|
2024-11-21 12:00 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268369
|
7.8 |
HIGH
Local
|
broadcom
|
advanced_secure_gateway
symantec_proxysg
|
Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible …
|
CWE-255
Credentials Management
|
CVE-2016-9100
|
2024-11-21 12:00 |
2017-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268370
|
6.1 |
MEDIUM
Network
|
broadcom
|
advanced_secure_gateway
symantec_proxysg
|
Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6, and ProxySG 6.7 prior to 6.7.2.1 are susceptible to an open redirection vulnerability…
|
CWE-601
Open Redirect
|
CVE-2016-9099
|
2024-11-21 12:00 |
2017-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
