PT-2025-31927 · Ibm · Ibm Engineering Lifecycle Optimization - Publishing

Published

2025-08-05

·

Updated

2025-08-05

·

CVE-2024-52890

Report an issue
CVSS v3.1
6.1
VectorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions:

IBM Engineering Lifecycle Optimization - Publishing versions 7.0.2 and 7.0.3

Description:

IBM Engineering Lifecycle Optimization - Publishing is susceptible to cross-site scripting due to a lack of validation of URIs.

Recommendations:

Ensure proper validation of URIs in IBM Engineering Lifecycle Optimization - Publishing version 7.0.2.

Ensure proper validation of URIs in IBM Engineering Lifecycle Optimization - Publishing version 7.0.3.

Fix

Weakness Enumeration

CWE-84

Related Identifiers

CVE-2024-52890

Affected Products

Ibm Engineering Lifecycle Optimization - Publishing