|
256451
|
6.1 |
MEDIUM
Network
|
ibm
|
inotes
|
IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lea…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1327
|
2024-11-21 12:21 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256452
|
5.4 |
MEDIUM
Network
|
ibm
|
infosphere_master_data_management_server
|
IBM InfoSphere Master Data Management Server 10.0, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the We…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1199
|
2024-11-21 12:21 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256453
|
4.9 |
MEDIUM
Network
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a privileged user to cause a memory dump that could contain highly sensitive information including access credentials. IBM X-Force ID…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-1495
|
2024-11-21 12:21 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256454
|
7.8 |
HIGH
Local
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a local user to gain elevated privileges by placing arbitrary files in installation directories. IBM X-force ID: 128467.
|
NVD-CWE-noinfo
|
CVE-2017-1468
|
2024-11-21 12:21 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256455
|
8.1 |
HIGH
Network
|
ibm
|
infosphere_information_server
|
A network layer security vulnerability in InfoSphere Information Server 9.1, 11.3, and 11.5 can lead to privilege escalation or unauthorized access. IBM X-Force ID: 128466.
|
NVD-CWE-noinfo
|
CVE-2017-1467
|
2024-11-21 12:21 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256456
|
9.1 |
CRITICAL
Network
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to exp…
|
CWE-611
XXE
|
CVE-2017-1383
|
2024-11-21 12:21 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256457
|
7.5 |
HIGH
Network
|
ibm
|
websphere_mq_internet_pass-thru
|
IBM WebSphere MQ Internet Pass-Thru 2.0 and 2.1 could allow n attacker to cause the MQIPT to stop responding due to an incorrectly configured security policy. IBM X-Force ID: 121156.
|
NVD-CWE-noinfo
|
CVE-2017-1118
|
2024-11-21 12:21 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256458
|
6.1 |
MEDIUM
Network
|
ibm
|
mobilefirst_platform_foundation
worklight
|
A Reflected Cross Site Scripting (XSS) vulnerability exists in the authorization function exposed by RESTful Web Api of IBM Worklight Framework 6.1, 6.2, 6.3, 7.0, 7.1, and 8.0. The vulnerable parame…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1500
|
2024-11-21 12:21 |
2017-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256459
|
5.4 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1496
|
2024-11-21 12:21 |
2017-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256460
|
7.5 |
HIGH
Network
|
ibm
|
i
|
IBM i OSPF 6.1, 7.1, 7.2, and 7.3 is vulnerable when a rogue router spoofs its origin. Routing tables are affected by a missing LSA, which may lead to loss of connectivity. IBM X-Force ID: 128379.
|
CWE-20
Improper Input Validation
|
CVE-2017-1460
|
2024-11-21 12:21 |
2017-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
