IBM Tivoli Netcool/OMNIbus Web GUI Storage Based Cross-Site Scripting Vulnerability

IBM Tivoli Netcool/OMNIbus is a service-level management (SLM) system that provides real-time, centralized monitoring of complex networks and IT domains. web GUI is a web-based application version of the system that displays event data from multiple data sources in a variety of graphical formats in supported web browsers and mobile devices. the IBM Tivoli Netcool/OMNIbus Web GUI is vulnerable to a storage cross-site scripting vulnerability. Tivoli Netcool/OMNIbus Web GUI is vulnerable to a stored cross-site scripting vulnerability. An attacker could exploit the vulnerability to embed arbitrary JavaScript code in the Web UI, which could alter the intended functionality, which could lead to credential disclosure in a trusted session.