| Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-0243 | 4.3 |
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF20, and 8.5.x before 8.5.0.0 CF09 allows remote attackers to inject arbitrar
|
03-09-2017 - 01:29 | 29-02-2016 - 11:59 | |
| CVE-2016-0245 | 5.5 |
The XML parser in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF10 allows remote authenticated users to read arbitrary files or cause a denial of service via an external entity declaration in conjunction with an entity ref
|
19-02-2017 - 06:15 | 29-02-2016 - 11:59 | |
| CVE-2016-0212 | 10.0 |
Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2016-0213 and CVE-2016-0
|
03-03-2016 - 19:35 | 29-02-2016 - 11:59 | |
| CVE-2016-0213 | 10.0 |
Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2016-0212 and CVE-2016-0
|
03-03-2016 - 19:34 | 29-02-2016 - 11:59 | |
| CVE-2016-0216 | 10.0 |
Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2016-0212 and CVE-2016-0
|
03-03-2016 - 17:04 | 29-02-2016 - 11:59 | |
| CVE-2016-0244 | 4.3 |
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF20, and 8.5.x before 8.5.0.0 CF09 allows remote attackers to inject arbitrar
|
03-03-2016 - 16:43 | 29-02-2016 - 11:59 | |
| CVE-2015-7457 | 4.3 |
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF09 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. Appropriate Vendor Advisory Link: <a href="htt
|
02-03-2016 - 15:06 | 29-02-2016 - 11:59 | |
| CVE-2015-7491 | 3.5 |
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF09 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. Appropriate Vendor Advisory Link: <a
|
02-03-2016 - 14:30 | 29-02-2016 - 11:59 | |
| CVE-2015-7455 | 4.0 |
IBM WebSphere Portal 7.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF20, and 8.5.x before 8.5.0.0 CF09 uses weak permissions for content items, which allows remote authenticated users to make modifications via the authoring UI. Appropriate Vendor Ad
|
02-03-2016 - 14:10 | 29-02-2016 - 11:59 | |
| CVE-2015-7428 | 5.8 |
Open redirect vulnerability in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF09 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL. <a href="http://cwe.mitre.org
|
02-03-2016 - 13:42 | 29-02-2016 - 11:59 |