PT-2016-3921 · Ibm · Ibm Security Access Manager For Web
Chris Shepherd
+5
·
Publicado
2016-02-15
·
Atualizado
2016-02-24
·
CVE-2015-8531
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security Access Manager for Web versions 8.0 through 8.0.1.3 IF4
IBM Security Access Manager for Web versions 9.0 through 9.0.0.1 IF1
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a crafted URL. This can lead to the execution of malicious code on the victim's browser.
Recommendations
For IBM Security Access Manager for Web versions 8.0 through 8.0.1.3 IF4, update to version 8.0.1.3 IF4 or later.
For IBM Security Access Manager for Web versions 9.0 through 9.0.0.1 IF1, update to version 9.0.0.1 IF1 or later.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Security Access Manager For Web