Skip to main content

I2 Enterprise Insight Analysis

3 CVEs product

Monthly

CVE-2018-1525 MEDIUM This Month

IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

IBM Information Disclosure I2 Enterprise Insight Analysis
NVD
CVSS 3.0
5.9
EPSS
1.1%
CVE-2018-1505 LOW Monitor

IBM i2 Enterprise Insight Analysis 2.1.7 allows web pages to be stored locally which can be read by another user on the system. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure I2 Enterprise Insight Analysis
NVD
CVSS 3.0
3.3
EPSS
0.4%
CVE-2018-1504 MEDIUM This Month

IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to hijack the clicking action of the victim. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure I2 Enterprise Insight Analysis
NVD
CVSS 3.0
6.1
EPSS
1.1%
EPSS 1% CVSS 5.9
MEDIUM This Month

IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

IBM Information Disclosure I2 Enterprise Insight Analysis
NVD
EPSS 0% CVSS 3.3
LOW Monitor

IBM i2 Enterprise Insight Analysis 2.1.7 allows web pages to be stored locally which can be read by another user on the system. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure I2 Enterprise Insight Analysis
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to hijack the clicking action of the victim. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure I2 Enterprise Insight Analysis
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy