Cross site scripting

2018-08-1613:29:00

PRIOn knowledge base

www.prio-n.com

0.0005 Low

EPSS

Percentile

19.0%

JSON

IBM Maximo Asset Management 7.6 through 7.6.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 147003.

CPENameOperatorVersion
maximo_asset_managementgt7.6.0.0
maximo_asset_managementle7.6.3.0

CPE	Name	Operator	Version
	maximo_asset_management	gt	7.6.0.0
	maximo_asset_management	le	7.6.3.0

References

exchange.xforce.ibmcloud.com/vulnerabilities/147003

www.ibm.com/support/docview.wss?uid=swg22017453

0.0005 Low

EPSS

Percentile

19.0%

JSON

Related for PRION:CVE-2018-1715