Name of the Vulnerable Software and Affected Versions:

IBM Tivoli Application Dependency Discovery Manager versions 7.3.0.0 through 7.3.0.11

Description:

This issue allows authenticated users to embed arbitrary JavaScript code in the Web UI, potentially altering the intended functionality and leading to credentials disclosure within a trusted session. The vulnerability is related to stored cross-site scripting.

Recommendations:

For versions 7.3.0.0 through 7.3.0.11, update to a version that includes a fix for this issue to prevent stored cross-site scripting attacks. As a temporary workaround, consider restricting access to the Web UI to minimize the risk of exploitation.