Ibm Sterling Order Management — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Sterling Order Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-20554 — CVSS 6.1 (medium): IBM Sterling Order Management 9.4, 9.5, and 10.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2022-34333 — CVSS 5.9 (medium): IBM Sterling Order Management 10.0 does not require that users should have strong passwords by default, which makes it easier for attackers…
CVE-2022-33959 — CVSS 5.4 (medium): IBM Sterling Order Management 10.0 could allow a user to bypass validation and perform unauthorized actions on behalf of other users. IBM…
CVE-2015-1911 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Sterling Order Management 8.5 before HF113, Sterling Selling and Fulfillment Foundation 9.0.0…
CVE-2014-0932 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.5 before HF105 and Sterling Selling and Fulfillment Foundation…