IBM Security Verify Governance Identity Manager is an IBM network appliance-based integration that focuses on business-centric rules, activities, and processes. version 10.0.1 of IBM Security Verify Governance Identity Manager is vulnerable to A cross-site scripting vulnerability exists. An attacker could exploit the vulnerability to embed arbitrary JavaScript code in the Web UI to change the intended functionality, which could lead to credential disclosure in trusted sessions.