CVE-2014-0850

Name of the Vulnerable Software and Affected Versions IBM InfoSphere Master Data Management Reference Data Management (RDM) Hub versions 10.1 through 11.0 before 11.0.0.0-MDM-IF008

Description The issue allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, which is a result of a cross-site scripting (XSS) vulnerability. Cross-site scripting (XSS) is a type of security vulnerability that occurs when an attacker is able to inject malicious scripts into a website, allowing them to steal user data or take control of the user's session.

Recommendations For IBM InfoSphere Master Data Management Reference Data Management (RDM) Hub version 10.1, update to a version after 11.0.0.0-MDM-IF008. For IBM InfoSphere Master Data Management Reference Data Management (RDM) Hub version 11.0 before 11.0.0.0-MDM-IF008, update to version 11.0.0.0-MDM-IF008 or later.