Ibm Sterling Selling And Fulfillment Foundation — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Sterling Selling And Fulfillment Foundation, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2016-8917 — CVSS 8.8 (high): IBM Sterling Order Management 9.2 - 9.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and…
CVE-2016-9991 — CVSS 8.0 (high): IBM Sterling Order Management 9.2 through 9.5 is vulnerable to cross-site request forgery which could allow an attacker to execute…
CVE-2013-0505 — CVSS 5.5 (medium): IBM Sterling Order Management 8.0 before HF127, 8.5 before HF89, 9.0 before HF69, 9.1.0 before FP41, and 9.2.0 before FP13 allows remote…
CVE-2015-1911 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Sterling Order Management 8.5 before HF113, Sterling Selling and Fulfillment Foundation 9.0.0…
CVE-2013-0506 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.0 before HF127, 8.5 before HF89, 9.0 before HF69, 9.1.0 before…
CVE-2014-4807 — CVSS 4.0 (medium): Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 9.3.0 before FP8 allows remote authenticated users to cause a…
CVE-2016-5953 — CVSS 3.7 (low): IBM Sterling Order Management transmits the session identifier within the URL. When a user is unable to view a certain view due to not…
CVE-2013-6322 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 8.0 before HF128 and…
CVE-2013-0578 — CVSS 3.5 (low): The Sterling Order Management APIs in IBM Sterling Multi-Channel Fulfillment Solution 8.0 before HF128 and IBM Sterling Selling and…
CVE-2014-0932 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.5 before HF105 and Sterling Selling and Fulfillment Foundation…