Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm emptoris contract management vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2020-4897
IBM Emptoris Contract Management and IBM Emptoris Spend Analysis 10.1.0, 10.1.1, and 10.1.3 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks ag...
Ibm Emptoris Contract Management
Ibm Emptoris Spend Analysis
4.3
CVSSv3
CVE-2019-4308
IBM Emptoris Sourcing 10.1.0 up to and including 10.1.3, IBM Contract Management 10.1.0 up to and including 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 up to and including 10.1.3 could allow an authenticated user to obtain sensitive information from error messages IBM X-Force ...
Ibm Emptoris Sourcing
Ibm Emptoris Spend Analysis
Ibm Emptoris Contract Management
4.3
CVSSv3
CVE-2019-4484
IBM Emptoris Sourcing 10.1.0 up to and including 10.1.3, IBM Contract Management 10.1.0 up to and including 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 up to and including 10.1.3 generates an error message that includes sensitive information that could be used in further attac...
Ibm Emptoris Sourcing
Ibm Emptoris Spend Analysis
Ibm Emptoris Contract Management
4.3
CVSSv3
CVE-2019-4485
IBM Emptoris Sourcing 10.1.0 up to and including 10.1.3, IBM Contract Management 10.1.0 up to and including 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 up to and including 10.1.3 generates an error message that includes sensitive information that could be used in further attac...
Ibm Emptoris Sourcing
Ibm Emptoris Spend Analysis
Ibm Emptoris Contract Management
5.3
CVSSv3
CVE-2018-1961
IBM Emptoris Contract Management 10.0.0 and 10.1.3.0 could disclose sensitive information from detailed information from error messages. IBM X-Force ID: 153657.
Ibm Emptoris Contract Management
5.4
CVSSv3
CVE-2020-4892
IBM Emptoris Contract Management 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-F...
Ibm Emptoris Contract Management
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2