Security Bulletin: Cross-site scripting vulnerability in Admin Console for WebSphere Application Server (CVE-2017-1380)

Cross-site scripting vulnerability in Admin Console for WebSphere Application Server (CVE-2017-1380). Vulnerable to arbitrary JavaScript code injection, potentially leading to credentials disclosure. Versions affected: 9.0, 8.5, 8.0, 7.0. Apply interim fix or upgrade to minimal fix pack levels as per the provided links for each version