Ibm Engineering Test Management vulnerabilities
45 known vulnerabilities affecting ibm/engineering_test_management.
Total CVEs
45
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM43
Vulnerabilities
Page 3 of 3
CVE-2020-4522MEDIUMCVSS 5.4v7.0.02020-09-02
CVE-2020-4522 [MEDIUM] CWE-79 CVE-2020-4522: IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability a
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182397.
nvd
CVE-2020-4546MEDIUMCVSS 5.4v7.0.02020-09-02
CVE-2020-4546 [MEDIUM] CWE-79 CVE-2020-4546: IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability a
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 183314.
nvd
CVE-2020-4396MEDIUMCVSS 5.4v7.0.02020-08-04
CVE-2020-4396 [MEDIUM] CWE-79 CVE-2020-4396: IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulner
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 179359.
nvd
CVE-2020-4410MEDIUMCVSS 4.3v7.0.02020-08-04
CVE-2020-4410 [MEDIUM] CVE-2020-4410: IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to send a special
IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to send a specially crafted HTTP GET request to read attachments on the server that they should not have access to. IBM X-Force ID: 179539.
nvd
CVE-2019-4748MEDIUMCVSS 5.4v7.02020-07-16
CVE-2019-4748 [MEDIUM] CWE-79 CVE-2019-4748: IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability a
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 173174.
nvd
← Previous3 / 3