Описание
Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 and 10.1 before FP1 and InfoSphere Master Data Management Server for Product Information Management 6.0, 9.0, and 9.1 allow remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:infosphere_master_data_management_collaboration_server:10.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:infosphere_master_data_management_collaboration_server:10.0.1:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:infosphere_master_data_management_server_for_product_information_management:9.1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.00406
Низкий
6 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
почти 4 года назад
Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 and 10.1 before FP1 and InfoSphere Master Data Management Server for Product Information Management 6.0, 9.0, and 9.1 allow remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.
EPSS
Процентиль: 61%
0.00406
Низкий
6 Medium
CVSS2
Дефекты
CWE-79