Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-1525 | 1 Ibm | 1 I2 Enterprise Insight Analysis | 2024-02-04 | 4.3 MEDIUM | 5.9 MEDIUM |
IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 142117. | |||||
CVE-2018-1505 | 1 Ibm | 1 I2 Enterprise Insight Analysis | 2024-02-04 | 2.1 LOW | 3.3 LOW |
IBM i2 Enterprise Insight Analysis 2.1.7 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 141413. | |||||
CVE-2018-1504 | 1 Ibm | 1 I2 Enterprise Insight Analysis | 2024-02-04 | 4.3 MEDIUM | 6.1 MEDIUM |
IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 141340. |