Ibm Bigfix Security Compliance Analytics — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Bigfix Security Compliance Analytics, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2017-1196 — CVSS 9.8 (critical): IBM BigFix Compliance (TEMA SUAv1 SCA SCM) 1.9.70 does not require that users should have strong passwords by default, which makes it…
CVE-2017-1197 — CVSS 9.8 (critical): IBM BigFix Compliance (TEMA SUAv1 SCA SCM) uses an inadequate account lockout setting that could allow a remote attacker to brute force…
CVE-2017-1201 — CVSS 7.8 (high): IBM BigFix Compliance Analytics 1.9.79 (TEMA SUAv1 SCA SCM) stores user credentials in clear text which can be read by a local user. IBM…
CVE-2017-1178 — CVSS 6.1 (medium): IBM Endpoint Manager for Security and Compliance 1.9.70 is vulnerable to cross-site scripting. This vulnerability allows users to embed…
CVE-2017-1179 — CVSS 5.9 (medium): IBM BigFix Compliance Analytics 1.9.79 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly…