PT-2018-5321 · Ibm · Ibm Campaign

Publicado

2018-09-07

·

Atualizado

2019-10-09

·

CVE-2017-1115

CVSS v3.1

5.4

Média

VetorAV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions IBM Campaign versions 9.1 through 10
Description The issue allows a remote attacker to inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.
Recommendations For IBM Campaign versions 9.1 through 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Special Elements Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-74

Identificadores relacionados

CVE-2017-1115

Produtos afetados

Ibm Campaign