CVE-2014-3031

Name of the Vulnerable Software and Affected Versions IBM Tivoli Business Service Manager versions 4.2.0 before 4.2.0.0 IF12 IBM Tivoli Business Service Manager versions 4.2.1 before 4.2.1.3 IF9

Description A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. This can lead to the execution of malicious code on the user's browser.

Recommendations For IBM Tivoli Business Service Manager version 4.2.0, update to 4.2.0.0 IF12 or later. For IBM Tivoli Business Service Manager version 4.2.1, update to 4.2.1.3 IF9 or later.