SymmetricalDataSecurity: Security Bulletin: IBM WebSphere Application Server Liberty XSS Vulnerabilities Affect IBM Control Center (CVE-2020-4303, CVE-2020-4304)

Thursday, July 16, 2020

Security Bulletin: IBM WebSphere Application Server Liberty XSS Vulnerabilities Affect IBM Control Center (CVE-2020-4303, CVE-2020-4304)

Jul 16, 2020 8:01 pm EDT

Share this post:

IBM Control Center (WebSphere Application Server_ – Liberty is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
IBM Control Center	6.1.3.0
IBM Control Center	6.1.2.1
IBM Control Center	6.0.0.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6249993

from IBM Product Security Incident Response Team https://ift.tt/30hrcj5

SymmetricalDataSecurity

Thursday, July 16, 2020

Security Bulletin: IBM WebSphere Application Server Liberty XSS Vulnerabilities Affect IBM Control Center (CVE-2020-4303, CVE-2020-4304)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews