Skip to main content
CVE-2016-2998 LOW PATCH Monitor

Cross-site request forgery (CSRF) vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to hijack the authentication. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity.

IBM CSRF Connections
NVD
CVSS 3.0
3.5
EPSS
0.0%
CVE-2016-0385 LOW PATCH Monitor

Buffer overflow in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.10, 9.0 before 9.0.0.1, and Liberty before 16.0.0.3, when HttpSessionIdReuse is. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable.

IBM Buffer Overflow Websphere Application Server
NVD
CVSS 3.0
3.1
EPSS
0.2%
CVE-2016-0370 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in IBM Forms Experience Builder 8.5.x and 8.6.x before 8.6.3 allows remote authenticated users to inject arbitrary web script or HTML via crafted input to an. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

IBM XSS Forms Experience Builder
NVD
CVSS 3.0
2.7
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy