This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Ibm First view 2015-01-09
Product Emptoris Last view 2015-10-05
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.1.2:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.1.1:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.4:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.3:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.1.0:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.0.3:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.0:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.1.4:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.0.0:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.2:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.1:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.0.2:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.0.1:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.1.3:*:*:*:*:*:* 2
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.7:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.6:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:strategic_supply_management:10.0.2.5:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.2.5:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.2.2:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.0.1:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.1.2:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.1.1:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.1.0:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.0.3:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.2.3:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.2.0:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.0.2:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.0.0:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.2.7:*:*:*:*:*:* 1
cpe:2.3:a:ibm:emptoris:supplier_lifecycle_management:10.0.2.6:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
3.5 2015-10-05 CVE-2015-4971

Cross-site scripting (XSS) vulnerability in IBM Emptoris Strategic Supply Management Platform and Emptoris Program Management 10.x before 10.0.1.4_iFix3, 10.0.2.x before 10.0.2.7_iFix1, 10.0.3.x before 10.0.3.2, and 10.0.4.x before 10.0.4.0_iFix1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
4 2015-01-09 CVE-2014-6212

The Echo API in IBM Emptoris Contract Management 9.5.x before 9.5.0.6 iFix11, 10.0.0.x before 10.0.0.1 iFix12, 10.0.1.x before 10.0.1.5 iFix2, and 10.0.2.x before 10.0.2.2 iFix5; Emptoris Sourcing 9.5 before 9.5.1.3 iFix2, 10.0.0.x before 10.0.0.1 iFix1, 10.0.1.x before 10.0.1.3 iFix1, and 10.0.2.x before 10.0.2.5; and Emptoris Program Management (aka PGM) and Strategic Supply Management (aka SSMP) 10.0.0.x before 10.0.0.3 iFix6, 10.0.1.x before 10.0.1.4 iFix1, and 10.0.2.x before 10.0.2.5 allows remote authenticated users to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')