IBM Forms Experience Builder is susceptible to building an application by an administrator that could expose a cross site scripting vulnerability.
CVEID: CVE-2016-0370**
DESCRIPTION:** IBM Forms Experience Builder is susceptible to building an application by an administrator that could expose a cross site scripting vulnerability.
CVSS Base Score: 2.7
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/112089 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N)
IBM Forms Experience Builder 8.5
IBM Forms Experience Builder 8.5.1
IBM Forms Experience Builder 8.6
Product
| VRMF|APAR|Remediation
—|—|—|—
IBM Forms Experience Builder| 8.5.0.*| LO88451, LO88449| To obtain the fix and obtain installation assistance for these versions, contact IBM Support.
IBM Forms Experience Builder| 8.5.1| LO88451, LO88449
IBM Forms Experience Builder| 8.6.0| LO88451, LO88449| Download and Install 8.6.3