IBM Security Siteprotector System
By the Year
In 2024 there have been 0 vulnerabilities in IBM Security Siteprotector System . Security Siteprotector System did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 2 | 7.65 |
2021 | 2 | 5.35 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Security Siteprotector System vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Security Siteprotector System Security Vulnerabilities
IBM SiteProtector Appliance 3.1.1 contains hard-coded credentials, such as a password or cryptographic key
CVE-2020-4150
9.8 - Critical
- July 11, 2022
IBM SiteProtector Appliance 3.1.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174142.
Use of Hard-coded Credentials
IBM SiteProtector Appliance 3.1.1 allows web pages to be stored locally which can be read by another user on the system
CVE-2020-4138
5.5 - Medium
- July 11, 2022
IBM SiteProtector Appliance 3.1.1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 174049.
IBM Security SiteProtector System 3.1.1 could allow a remote attacker to obtain sensitive information, caused by missing 'HttpOnly' flag
CVE-2020-4146
5.3 - Medium
- November 12, 2021
IBM Security SiteProtector System 3.1.1 could allow a remote attacker to obtain sensitive information, caused by missing 'HttpOnly' flag. A remote attacker could exploit this vulnerability to obtain sensitive information. IBM X-Force ID: 174129.
Information Disclosure
IBM Security SiteProtector System 3.1.1 is vulnerable to cross-site scripting
CVE-2020-4140
5.4 - Medium
- November 12, 2021
IBM Security SiteProtector System 3.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 174052.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Security Siteprotector System or by IBM? Click the Watch button to subscribe.