IBM Cloud Pak for Applications is an application from IBM USA, Inc. providing cloud-native development solutions that deliver value quickly.A cross-site scripting vulnerability exists in IBM Cloud Pak for Applications v4.3 that allows a user to embed arbitrary JavaScript code in the Web UI to alter the intended functionality, potentially leading to credential disclosure in trusted sessions. No detailed vulnerability details are currently available.