CVE-2024-27270

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server Liberty versions 23.0.0.3 through 24.0.0.3

Description This issue allows users to embed arbitrary JavaScript code in a specially crafted URI, potentially leading to cross-site scripting. The estimated number of potentially affected devices worldwide is not specified. There is no information provided about real-world incidents where this issue was exploited.

Recommendations For versions 23.0.0.3 through 24.0.0.3, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.