CVE-2024-43184

🗓️ 04 Sep 2025 15:04:57Reported by ibmType

Unauthenticated attacker can inject JavaScript into IBM Jazz Foundation Web User Interface via cross-site scripting.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-43184	4 Sep 202515:30	–	circl
CNNVD	IBM Jazz Foundation 跨站脚本漏洞	4 Sep 202500:00	–	cnnvd
Cvelist	CVE-2024-43184 IBM Jazz Foundation cross-site scripting	4 Sep 202515:04	–	cvelist
EUVD	EUVD-2024-54965	3 Oct 202520:07	–	euvd
IBM Security Bulletins	Security Bulletin: The IBM® Engineering Lifecycle Management - Jazz Foundation is impacted by Path Relative Stylesheet Import vulnerability.	4 Sep 202509:23	–	ibm
NVD	CVE-2024-43184	4 Sep 202515:15	–	nvd
Positive Technologies	PT-2025-35944	4 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-43184	6 Sep 202515:25	–	redhatcve
Vulnrichment	CVE-2024-43184 IBM Jazz Foundation cross-site scripting	4 Sep 202515:04	–	vulnrichment

NVD

Vulners

Node

ibm jazz_foundationMatch7.0.2-

ibm jazz_foundationMatch7.0.2ifix001

ibm jazz_foundationMatch7.0.2ifix002

ibm jazz_foundationMatch7.0.2ifix003

ibm jazz_foundationMatch7.0.2ifix004

ibm jazz_foundationMatch7.0.2ifix005

ibm jazz_foundationMatch7.0.2ifix006

ibm jazz_foundationMatch7.0.2ifix007

ibm jazz_foundationMatch7.0.2ifix008a

ibm jazz_foundationMatch7.0.2ifix009

ibm jazz_foundationMatch7.0.2ifix010

ibm jazz_foundationMatch7.0.2ifix011

ibm jazz_foundationMatch7.0.2ifix012

ibm jazz_foundationMatch7.0.2ifix013

ibm jazz_foundationMatch7.0.2ifix014

ibm jazz_foundationMatch7.0.2ifix016

ibm jazz_foundationMatch7.0.2ifix017

ibm jazz_foundationMatch7.0.2ifix018

ibm jazz_foundationMatch7.0.2ifix020a

ibm jazz_foundationMatch7.0.2ifix021

ibm jazz_foundationMatch7.0.2ifix022

ibm jazz_foundationMatch7.0.2ifix023

ibm jazz_foundationMatch7.0.2ifix024

ibm jazz_foundationMatch7.0.2ifix025

ibm jazz_foundationMatch7.0.2ifix026a

ibm jazz_foundationMatch7.0.2ifix027

ibm jazz_foundationMatch7.0.2ifix028

ibm jazz_foundationMatch7.0.2ifix029

ibm jazz_foundationMatch7.0.2ifix030

ibm jazz_foundationMatch7.0.2ifix031

ibm jazz_foundationMatch7.0.2ifix032

ibm jazz_foundationMatch7.0.2ifix033

ibm jazz_foundationMatch7.0.3-

ibm jazz_foundationMatch7.0.3ifix001

ibm jazz_foundationMatch7.0.3ifix002

ibm jazz_foundationMatch7.0.3ifix003

ibm jazz_foundationMatch7.0.3ifix004

ibm jazz_foundationMatch7.0.3ifix005

ibm jazz_foundationMatch7.0.3ifix006

ibm jazz_foundationMatch7.0.3ifix007

ibm jazz_foundationMatch7.0.3ifix008

ibm jazz_foundationMatch7.0.3ifix009

ibm jazz_foundationMatch7.0.3ifix010

ibm jazz_foundationMatch7.0.3ifix011

ibm jazz_foundationMatch7.0.3ifix012

ibm jazz_foundationMatch7.1.0-

ibm jazz_foundationMatch7.1.0ifix001

ibm jazz_foundationMatch7.1.0ifix002

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:jazz_foundation:7.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:jazz_foundation:7.0.2:ifix033:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:jazz_foundation:7.0.3:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:jazz_foundation:7.0.3:ifix012:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:jazz_foundation:7.1.0:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:jazz_foundation:7.1.0:ifix002:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Jazz Foundation",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "7.0.2 iFix033",
        "status": "affected",
        "version": "7.0.2",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.0.3 iFix012",
        "status": "affected",
        "version": "7.0.3",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.1.0 iFix002",
        "status": "affected",
        "version": "7.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7244013

09 Jan 2026 02:31Current

6Medium risk

Vulners AI Score6

CVSS 3.16.1

EPSS0.00126

SSVC

CWE-79