Oktawian Powazka

#10630of 53,633
26Total CVSS
Vulnerabilities · 4
Medium
2
High
2
PT-2018-4603
5.3
2018-02-28
Ibm · Ibm Tririga Application Platform · CVE-2016-0299
**Name of the Vulnerable Software and Affected Versions** IBM TRIRIGA Application Platform versions 3.3 before 3.3.2.6 IBM TRIRIGA Application Platform versions 3.4 before 3.4.2.3 IBM TRIRIGA Application Platform versions 3.5 before 3.5.0.1 **Description** The issue allows remote attackers to obtain sensitive information via vectors involving a database query. **Recommendations** For versions 3.3 before 3.3.2.6, update to version 3.3.2.6 or later. For versions 3.4 before 3.4.2.3, update to version 3.4.2.3 or later. For versions 3.5 before 3.5.0.1, update to version 3.5.0.1 or later.
PT-2018-4604
5.5
2018-02-02
Ibm · Ibm Tririga Application Platform · CVE-2016-0300
**Name of the Vulnerable Software and Affected Versions** IBM TRIRIGA Application Platform versions 3.3 before 3.3.2.6 IBM TRIRIGA Application Platform versions 3.4 before 3.4.2.3 IBM TRIRIGA Application Platform versions 3.5 before 3.5.0.1 **Description** The issue might allow remote attackers to access arbitrary JSP pages via vectors related to improper input validation. **Recommendations** For IBM TRIRIGA Application Platform versions 3.3 before 3.3.2.6, update to version 3.3.2.6 or later. For IBM TRIRIGA Application Platform versions 3.4 before 3.4.2.3, update to version 3.4.2.3 or later. For IBM TRIRIGA Application Platform versions 3.5 before 3.5.0.1, update to version 3.5.0.1 or later.
PT-2018-4607
7.5
2018-02-02
Ibm · Ibm Tririga Application Platform · CVE-2016-0312
**Name of the Vulnerable Software and Affected Versions** IBM TRIRIGA Application Platform versions prior to 3.3.2 **Description** The issue allows remote attackers to obtain sensitive information via vectors related to granting unauthenticated access to Document Manager. **Recommendations** For versions prior to 3.3.2, update to version 3.3.2 or later to resolve the issue.
PT-2016-4162
7.7
2016-07-01
Ibm · Ibm Tririga Application Platform · CVE-2016-0362
**Name of the Vulnerable Software and Affected Versions** IBM TRIRIGA Application Platform versions 3.3 before 3.3.2.6 IBM TRIRIGA Application Platform versions 3.4 before 3.4.2.4 IBM TRIRIGA Application Platform versions 3.5 before 3.5.0.2 **Description** The issue allows remote authenticated users to conduct server-side request forgery (SSRF) attacks. This can trigger network traffic to arbitrary intranet or Internet hosts via a crafted proxy request to a web service. **Recommendations** For versions 3.3 before 3.3.2.6, update to version 3.3.2.6 or later. For versions 3.4 before 3.4.2.4, update to version 3.4.2.4 or later. For versions 3.5 before 3.5.0.2, update to version 3.5.0.2 or later.