Tivoli Netcool Webtop Security Vulnerabilities and Issues — Tivoli Netcool Webtop CVE List

cve

CVE-2014-0941

Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than...

5.2AI Score

0.001EPSS

2014-05-01 05:29 PM

27

cve

CVE-2014-0942

Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than...

5.2AI Score

0.001EPSS

2014-05-01 05:29 PM

15

cve

CVE-2008-4294

IBM Tivoli Netcool/Webtop 2.1 before 2.1.0.5 preserves cached user privileges after logout, which allows physically proximate attackers to hijack a session by visiting an unattended workstation, as demonstrated by a root session that is still valid after a subsequent read-only session has...

6.3AI Score

0.001EPSS

2008-09-27 10:30 AM

18

4