PT-2015-5527 · Ibm · Ibm Case Manager
Published
2015-07-20
·
Updated
2016-11-30
·
CVE-2015-1979
CVSS v2.0
3.5
Low
| Vector | AV:N/AC:M/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Case Manager version 5.2.1
Description
The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the Error dialog. These vulnerabilities allow remote authenticated users to inject arbitrary web script or HTML via crafted input to the
addressability or comments component.Recommendations
For IBM Case Manager version 5.2.1, update to version 5.2.1.2 or later to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Case Manager