Ibm: >> Openpages Grc Platform >> 8.0.0.0 Security Vulnerabilities
IBM OpenPages GRC Platform 8.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182906.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-05-11
IBM OpenPages GRC Platform 8.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 182907.
CVSS Score
4.3
EPSS Score
0.001
Published
2021-05-11
IBM OpenPages GRC Platform 7.2, 7.3, 7.4, and 8.0 could allow an attacker to obtain sensitive information from error log files. IBM X-Force ID: 134001.
CVSS Score
6.2
EPSS Score
0.0
Published
2018-09-10