SymmetricalDataSecurity: IBM Security Bulletin: IBM Content Navigator Cross Site Scripting Vulnerability

Friday, May 19, 2017

IBM Security Bulletin: IBM Content Navigator Cross Site Scripting Vulnerability

This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

CVE(s): CVE-2017-1282

Affected product(s) and affected version(s):

IBM Content Navigator versions 2.0.3.5 – 2.0.3.8
IBM Content Navigator version 3.0.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2rlQbSQ
X-Force Database: http://ift.tt/2rz82mp

The post IBM Security Bulletin: IBM Content Navigator Cross Site Scripting Vulnerability appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2rlOll3

SymmetricalDataSecurity

Friday, May 19, 2017

IBM Security Bulletin: IBM Content Navigator Cross Site Scripting Vulnerability

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews