Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm curam social program management 6.0.5.5 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2014-4804
Curam Universal Access in IBM Curam Social Program Management 5.2 before SP6 EP6, 6.0 SP2 before EP26, 6.0.4.5 before iFix007, 6.0.5.4 before iFix005, and 6.0.5.5 before iFix003, when SPI inclusion is enabled, allows remote malicious users to obtain sensitive user data by visitin...
Ibm Curam Social Program Management 6.0Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program ManagementIbm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.5.5
3.5
CVSSv2
CVE-2014-4803
CRLF injection vulnerability in the Universal Access implementation in IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 prior to 6.0.4.5 iFix007, and 6.0.5 prior to 6.0.5.5 iFix003, when WebSphere Application Server is not used, allows remote authenticated users to ...
Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program ManagementIbm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.5
5
CVSSv2
CVE-2014-6092
IBM Curam Social Program Management (SPM) 5.2 before SP6 EP6, 6.0 SP2 before EP26, 6.0.4 prior to 6.0.4.6, and 6.0.5 prior to 6.0.5.6 requires failed-login handling for web-service accounts to have the same lockout policy as for standard user accounts, which makes it easier for r...
Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program ManagementIbm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.5.5
3.5
CVSSv2
CVE-2014-6191
Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0 SP2, 6.0.4, and 6.0.5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 98568.
Ibm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program Management 6.0Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.2
3.5
CVSSv2
CVE-2014-6192
Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 prior to 6.0.4.5 iFix10, 6.0.5 prior to 6.0.5.6, and 6.0.5.5a prior to 6.0.5.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Curam Social Program Management 6.0Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program Management 6.0.5.6Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program Management 6.0.5.5aIbm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.7
6.5
CVSSv2
CVE-2014-8903
IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 prior to 6.0.4.5iFix10 and 6.0.5 prior to 6.0.5.6 allows remote authenticated users to load arbitrary Java classes via unspecified vectors.
Ibm Curam Social Program Management 6.0.5Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program Management 6.0.4.6Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.5.10Ibm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.4.8Ibm Curam Social Program Management 6.0Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program Management 6.0.5.6Ibm Curam Social Program Management 6.0.5.7Ibm Curam Social Program Management 6.0.5.8Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.5.9Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.7
3.5
CVSSv2
CVE-2016-9979
IBM Curam Social Program Management 5.2, 6.0, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted se...
Ibm Curam Social Program Management 6.0.4.7Ibm Curam Social Program Management 6.0.4.8Ibm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program Management 6.0.4.6Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program Management 6.0.5.9Ibm Curam Social Program Management 6.0.5Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.7Ibm Curam Social Program Management 6.0.5.8Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program Management 6.0.5.6Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.1.0.0Ibm Curam Social Program Management 6.1.0.3
3.5
CVSSv2
CVE-2017-1740
IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...
Ibm Curam Social Program Management 6.0.5.4Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program Management 6.0.5.6Ibm Curam Social Program Management 6.0.5.7Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program Management 6.0.5.9Ibm Curam Social Program Management 6.0.5Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.3Ibm Curam Social Program Management 6.0.5.8Ibm Curam Social Program Management 6.0.5.10Ibm Curam Social Program Management 6.1.1.3Ibm Curam Social Program Management 6.1.1.4Ibm Curam Social Program Management 6.1.1.5Ibm Curam Social Program Management 6.1.1.6Ibm Curam Social Program Management 6.1.0.4Ibm Curam Social Program Management 6.1.1.0Ibm Curam Social Program Management 6.1.1.2Ibm Curam Social Program Management 6.1.0.0Ibm Curam Social Program Management 6.1.0.1Ibm Curam Social Program Management 6.1.0.2
3.5
CVSSv2
CVE-2014-3069
Multiple CRLF injection vulnerabilities in the Universal Access component in IBM Curam Social Program Management (SPM) 6.0.5.5, when WebSphere Application Server is not used, allow remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting att...
Ibm Curam Social Program Management 6.0.5.5
4
CVSSv2
CVE-2016-9978
IBM Curam Social Program Management 5.2, 6.0, and 7.0 could allow an authenticated malicious user to disclose sensitive information. IBM X-Force ID: 120254.
Ibm Curam Social Program Management 5.2Ibm Curam Social Program Management 6.0Ibm Curam Social Program Management 6.0.0Ibm Curam Social Program Management 6.0.4.3Ibm Curam Social Program Management 6.0.4.4Ibm Curam Social Program Management 6.0.4.1Ibm Curam Social Program Management 6.0.4.2Ibm Curam Social Program Management 6.0.4.0Ibm Curam Social Program Management 6.0.4.7Ibm Curam Social Program Management 6.0.4.8Ibm Curam Social Program Management 6.0.4.5Ibm Curam Social Program Management 6.0.4.6Ibm Curam Social Program Management 6.0.5.1Ibm Curam Social Program Management 6.0.5.2Ibm Curam Social Program Management 6.0.5.9Ibm Curam Social Program Management 6.0.5Ibm Curam Social Program Management 6.0.5.0Ibm Curam Social Program Management 6.0.5.7Ibm Curam Social Program Management 6.0.5.8Ibm Curam Social Program Management 6.0.5.5Ibm Curam Social Program Management 6.0.5.6Ibm Curam Social Program Management 6.0.5.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook