CVEDB API

Vulnerabilities

Vulnerable Software

Ibm: >> Openpages Grc Platform >> 7.1.0.3 Security Vulnerabilities

CVE-2016-0234

IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 could allow a local user to obtain sensitive information when a previous user has logged out of the system but neglected to close their browser. IBM X-Force ID: 110303.

CVSS Score

4.0

EPSS Score

0.0

Published

2018-08-30

CVE-2016-3048

IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 114711.

CVSS Score

5.4

EPSS Score

0.003

Published

2017-11-01

CVE-2017-1147

CVSS Score

5.4

EPSS Score

0.002

Published

2017-11-01

CVE-2017-1148

IBM OpenPages GRC Platform 7.2 and 7.3 with OpenPages Loss Event Entry (LEE) application could allow a user to obtain sensitive information including private APIs that could be used in further attacks against the system. IBM X-Force ID: 122201.

CVSS Score

5.3

EPSS Score

0.002

Published

2017-11-01

CVE-2017-1290

CVSS Score

5.4

EPSS Score

0.003

Published

2017-11-01

CVE-2017-1300

IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 125162.

CVSS Score

8.8

EPSS Score

0.002

Published

2017-11-01

CVE-2017-1333

IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 could allow an unauthenticated user to obtain sensitive information about the server that could be used in future attacks against the system. IBM X-Force ID: 126241.

CVSS Score

5.3

EPSS Score

0.002

Published

2017-11-01

Page 1

Vulnerabilities

Vulnerable Software

Ibm: >> Openpages Grc Platform >> 7.1.0.3 Security Vulnerabilities

Products

Pricing

Contact Us