Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Ibm Subscribe
Filtered by product Control Center
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-20529 1 Ibm 1 Control Center 2021-05-25 5.0 MEDIUM 5.3 MEDIUM
IBM Control Center 6.2.0.0 could allow a user to obtain sensitive version information that could be used in further attacks against the system. IBM X-Force ID: 198763.
CVE-2021-20528 1 Ibm 1 Control Center 2021-05-25 3.5 LOW 5.4 MEDIUM
IBM Control Center 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 198761.
CVE-2017-1758 1 Ibm 3 Control Center, Financial Transaction Manager, Transformation Extender Advanced 2018-03-12 5.5 MEDIUM 7.1 HIGH
IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Advanced 9.0) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 135859.
CVE-2016-0252 1 Ibm 2 Control Center, Sterling Control Center 2016-07-08 1.9 LOW 5.1 MEDIUM
IBM Control Center 6.x before 6.0.0.1 iFix06 and Sterling Control Center 5.4.x before 5.4.2.1 iFix09 allow local users to decrypt the master key via unspecified vectors.