Lucene search
IbmCVELIST:CVE-2017-1372HistoryJul 17, 2017 - 12:00 a.m.
CVE-2017-1372
2017-07-1700:00:00
ibm
www.cve.org
0.0005 Low
EPSS
Percentile
18.9%
IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 126865.
CNA Affected
[
{
"product": "TRIRIGA Application Platform",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "3.3"
},
{
"status": "affected",
"version": "3.3.1"
},
{
"status": "affected",
"version": "3.3.2"
},
{
"status": "affected",
"version": "3.4"
},
{
"status": "affected",
"version": "3.4.1"
},
{
"status": "affected",
"version": "3.4.2"
},
{
"status": "affected",
"version": "3.5"
},
{
"status": "affected",
"version": "3.5.1"
},
{
"status": "affected",
"version": "3.5.2"
}
]
}
]Related
prion
prion
Cross site scripting
2017-07-21 20:29:00
ibm
ibm
cve
cve
CVE-2017-1372
2017-07-21 20:29:00
nvd
nvd
CVE-2017-1372
2017-07-21 20:29:00