CPE-663F81D1-8AC5-4418-9423-E93F29162859 Détail

CPE Details

IBM Engineering Lifecycle Optimization 7.0.2

Vendor

ibm

Product

engineering_lifecycle_optimization

Version

7.0.2

Created

2021-07-20
10h41 +00:00

Modifié

2021-09-21
13h13 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:ibm:engineering_lifecycle_optimization:7.0.2:::::::*

Informations

Vendor

ibm

Product

engineering_lifecycle_optimization

Version

7.0.2

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2023-45191	2024-02-09 00h34 +00:00	IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 268755.	7.5	Haute
CVE-2023-45190	2024-02-09 00h32 +00:00	IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM X-Force ID: 268754.	6.1	Moyen
CVE-2023-45187	2024-02-09 00h29 +00:00	IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 268749.	8.8	Haute
CVE-2021-29786	2021-10-27 16h00 +00:00	IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. IBM X-Force ID: 203172.	6.5	Moyen
CVE-2021-29774	2021-10-27 16h00 +00:00	IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. IBM X-Force ID: 203025.	7.5	Haute
CVE-2021-29713	2021-10-27 16h00 +00:00	IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.	5.4	Moyen
CVE-2021-29673	2021-10-27 16h00 +00:00	IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 199482.	5.4	Moyen
CVE-2021-20507	2021-07-19 16h00 +00:00	IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 198235.	5.4	Moyen
CVE-2020-5031	2021-07-19 16h00 +00:00	IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 193738.	5.4	Moyen

IBM Engineering Lifecycle Optimization 7.0.2

CPE Details

CPE Name: cpe:2.3:a:ibm:engineering_lifecycle_optimization:7.0.2:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:ibm:engineering_lifecycle_optimization:7.0.2:::::::*