EUVD-2019-13845

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM InfoSphere vulnerable to cross-site scripting, risking credential disclosure in trusted sessions.

Reporter	Title	Published	Views	Family All 8
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Data Quality Exception Console is affected by a Reflected XSS (Cross-Site Scripting) vulnerability	19 Apr 201923:10	–	ibm
CNVD	IBM InfoSphere Data Quality Exception Console and IBM InfoSphere Information Server on Cloud Cross-Site Scripting Vulnerability	25 Apr 201900:00	–	cnvd
CVE	CVE-2019-4238	25 Apr 201914:36	–	cve
Cvelist	CVE-2019-4238	25 Apr 201914:36	–	cvelist
NVD	CVE-2019-4238	25 Apr 201915:29	–	nvd
OSV	CVE-2019-4238	25 Apr 201915:29	–	osv
Prion	Cross site scripting	25 Apr 201915:29	–	prion
Positive Technologies	PT-2019-16986 · Ibm · Ibm Infosphere Information Server	25 Apr 201900:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "08c4ff4b-c9ea-35dc-82fd-300e85128088",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "124be3c2-e3ab-337a-9fb9-7ce869fa071f",
        "product": {
          "name": "InfoSphere Information Server"
        },
        "product_version": "11.7"
      },
      {
        "id": "51c8a383-dc15-3795-9723-9748bfe48d68",
        "product": {
          "name": "InfoSphere Information Server"
        },
        "product_version": "11.5"
      },
      {
        "id": "690448e3-0352-3e36-a4d2-296c68096318",
        "product": {
          "name": "InfoSphere Information Server"
        },
        "product_version": "11.3"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/docview.wss
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/159464
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.5Medium risk

Vulners AI Score5.5

CVSS 35.4

CVSS 23.5

CVSS 3.15.4

EPSS0.00174