Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Ibm Subscribe
Filtered by product Security Risk Manager On Cp4s
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-29912 2 Ibm, Redhat 2 Security Risk Manager On Cp4s, Openshift 2021-10-22 3.5 LOW 5.4 MEDIUM
IBM Security Risk Manager on CP4S 1.7.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 207828.
CVE-2021-38911 2 Ibm, Redhat 2 Security Risk Manager On Cp4s, Openshift 2021-10-22 4.0 MEDIUM 4.9 MEDIUM
IBM Security Risk Manager on CP4S 1.7.0.0 stores user credentials in plain clear text which can be read by a an authenticatedl privileged user. IBM X-Force ID: 209940.