Senior Executives More Involved with SOC Operations, Report Finds

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database CVE-2019-4257
PUBLISHED: 2019-06-06

IBM InfoSphere Information Server 11.5 and 11.7 is affected by an information disclosure vulnerability. Sensitive information in an error message may be used to conduct further attacks against the system. IBM X-Force ID: 159945.

CVE-2019-4161
PUBLISHED: 2019-06-06

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 158660.

CVE-2019-4162
PUBLISHED: 2019-06-06

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 is missing the HTTP Strict Transport Security header. Users can navigate by mistake to the unencrypted version of the web application or accept invalid certificates. This leads to sensitive data being sent unencrypted over the wire. IBM X…

CVE-2019-4217
PUBLISHED: 2019-06-06

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim’s click actions and possibly launch f…

CVE-2019-4218
PUBLISHED: 2019-06-06

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 159227.


Read Moreā€¦

Leave a Reply