Skip to main content

Worklight

2 CVEs product

Monthly

CVE-2017-1500 MEDIUM This Month

A Reflected Cross Site Scripting (XSS) vulnerability exists in the authorization function exposed by RESTful Web Api of IBM Worklight Framework 6.1, 6.2, 6.3, 7.0, 7.1, and 8.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS IBM Mobilefirst Platform Foundation Worklight
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2014-0888 MEDIUM This Month

IBM Worklight Foundation 5.x and 6.x before 6.2.0.0, as used in Worklight and Mobile Foundation, allows remote authenticated users to bypass the application-authenticity feature via unspecified. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

IBM Privilege Escalation Worklight Mobile Foundation
NVD
CVSS 2.0
4.9
EPSS
0.2%
EPSS 0% CVSS 6.1
MEDIUM This Month

A Reflected Cross Site Scripting (XSS) vulnerability exists in the authorization function exposed by RESTful Web Api of IBM Worklight Framework 6.1, 6.2, 6.3, 7.0, 7.1, and 8.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS IBM Mobilefirst Platform Foundation +1
NVD
EPSS 0% CVSS 4.9
MEDIUM This Month

IBM Worklight Foundation 5.x and 6.x before 6.2.0.0, as used in Worklight and Mobile Foundation, allows remote authenticated users to bypass the application-authenticity feature via unspecified. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

IBM Privilege Escalation Worklight +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy