|
268441
|
7.8 |
HIGH
Local
|
ibm
|
security_identity_manager_virtual_appliance
|
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows local users to gain administrator privileges via unspecified vectors. IBM X-Force ID:…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0327
|
2024-11-21 11:41 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268442
|
8.8 |
HIGH
Network
|
ibm
|
security_identity_manager_virtual_appliance
|
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-FP0001 allows remote authenticated users to execute arbitrary code with administrator privileges vi…
|
CWE-77
Command Injection
|
CVE-2016-0324
|
2024-11-21 11:41 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268443
|
4.3 |
MEDIUM
Network
|
ibm
|
sametime
|
IBM Sametime 8.5.2 and 9.0 could allow an unauthorized authenticated user to enumerate group chat ID numbers and join meetings that he was not invited to. IBM X-Force ID: 111928.
|
CWE-200
Information Exposure
|
CVE-2016-0358
|
2024-11-21 11:41 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268444
|
6.5 |
MEDIUM
Network
|
ibm
|
sametime
|
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been invited to a Sametime meeting room, to cause the screen sharing to cease through the use of cross-…
|
CWE-352
Origin Validation Error
|
CVE-2016-0356
|
2024-11-21 11:41 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268445
|
6.5 |
MEDIUM
Network
|
ibm
|
sametime
|
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been invited to a Sametime meeting room, to cause the screen sharing to cease through the use of cross-…
|
CWE-352
Origin Validation Error
|
CVE-2016-0355
|
2024-11-21 11:41 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268446
|
5.5 |
MEDIUM
Network
|
ibm
|
sametime
|
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a malicious file to a Sametime meeting room, that could be downloaded by unsuspecting users which coul…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2016-0354
|
2024-11-21 11:41 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268447
|
3.7 |
LOW
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 9.0, 9.1, 9.5, 10.0, and 10.1 transmits sensitive data in cleartext in the query of the request. This could allow an attacker to obtain sensitive information using man in the mi…
|
CWE-200
Information Exposure
|
CVE-2016-0238
|
2024-11-21 11:41 |
2017-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268448
|
6.5 |
MEDIUM
Network
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote authenticated attacker c…
|
CWE-611
XXE
|
CVE-2016-0254
|
2024-11-21 11:41 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268449
|
6.1 |
MEDIUM
Network
|
ibm
|
marketing_platform
|
IBM Marketing Platform 9.1 and 10.0 is vulnerable to stored cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to inject ma…
|
CWE-79
Cross-site Scripting
|
CVE-2016-0255
|
2024-11-21 11:41 |
2017-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268450
|
4.0 |
MEDIUM
Local
|
ibm
|
tealeaf_consumer_experience
|
The IBM Tealeaf Consumer Experience 8.7, 8.8, and 9.0 portal exposes some of its operational state in a form that may be accidentally captured and exposed by network infrastructure components such as…
|
CWE-200
Information Exposure
|
CVE-2016-0382
|
2024-11-21 11:41 |
2017-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
