A fix is available for a cross-site scripting vulnerability in “IBM Support Tools for Lotus WCM” (CVE-2017-1536). “IBM Support Tools for Lotus WCM” is a portlet available on the IBM Collaboration Solutions Catalog which is used to troubleshoot WCM content related issues in IBM WebSphere Portal. It is not part of the out of the box installation of IBM WebSphere Portal.
CVE(s): CVE-2017-1536
Affected product(s) and affected version(s):
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2iWaDaD
X-Force Database: http://ift.tt/2ATMWXz
The post IBM Security Bulletin: Cross-Site Scripting vulnerability in IBM Support Tools for Lotus WCM (CVE-2017-1536) appeared first on IBM PSIRT Blog.
| Affected Product | Affected Versions |
| IBM Support Tools for Lotus WCM | 1.0 – 1.7.0 |
from IBM Product Security Incident Response Team http://ift.tt/2iZzZUW
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.