Security Vulnerabilities - CVEs Published In November 2023
IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. IBM X-Force ID: 263332.
CVSS Score
8.1
EPSS Score
0.0
Published
2023-11-18
IBM CICS TX Advanced 10.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 260770.
CVSS Score
5.9
EPSS Score
0.0
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Activity Search Criteria-Activity Number.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via Product Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Category Creation Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18