Skip to main content
CVE-2015-4965 MEDIUM This Month

maximouiweb/webmodule/webclient/utility/merlin.jsp in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX004, and 7.6.0 before 7.6.0.1 IFIX002; Maximo Asset Management 7.5.x. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Information Disclosure Change And Configuration Management Database Maximo Asset Management Maximo Asset Management Essentials +10
NVD
CVSS 2.0
4.0
EPSS
0.1%
CVE-2015-6549 LOW Monitor

Cross-site scripting (XSS) vulnerability in an application console in the server in Symantec NetBackup OpsCenter before 7.7.1 allows remote authenticated users to inject arbitrary web script or HTML. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

XSS Netbackup Opscenter
NVD
CVSS 2.0
3.5
EPSS
0.5%
CVE-2015-4971 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in IBM Emptoris Strategic Supply Management Platform and Emptoris Program Management 10.x before 10.0.1.4_iFix3, 10.0.2.x before 10.0.2.7_iFix1, 10.0.3.x. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

IBM XSS Emptoris Emptoris Program Management
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2015-4944 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX003, and 7.6.0 before 7.6.0.1 IFIX001; Maximo Asset Management 7.5.x before. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

IBM XSS Change And Configuration Management Database Maximo Asset Management Maximo Asset Management Essentials +10
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2015-4992 LOW PATCH Monitor

IBM Sterling B2B Integrator 5.2 before 5020500_8 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

IBM Information Disclosure Sterling B2b Integrator
NVD
CVSS 2.0
3.5
EPSS
0.1%
CVE-2015-1015 LOW Monitor

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cx Programmer Cj2H Plc Cj2M Plc
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-0988 LOW Monitor

Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cx Programmer
NVD
CVSS 2.0
2.1
EPSS
0.1%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy