PT-2017-5965 · Ibm · Ibm Security Network Protection

Published

2017-08-22

Updated

2017-08-25

CVE-2014-6189

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: IBM Security Network Protection devices versions 5.2 before 5.2.0.0-ISS-XGS-All-Models-Hotfix-FP0008 IBM Security Network Protection devices versions 5.3 before 5.3.0.5

Description: A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Recommendations: For versions 5.2 before 5.2.0.0-ISS-XGS-All-Models-Hotfix-FP0008, update to 5.2.0.0-ISS-XGS-All-Models-Hotfix-FP0008 or later. For versions 5.3 before 5.3.0.5, update to 5.3.0.5 or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2014-6189

Affected Products

Ibm Security Network Protection

PT-2017-5965 · Ibm · Ibm Security Network Protection

CVE-2014-6189

Weakness Enumeration

Related Identifiers

Affected Products

References · 3