Cross site scripting

2016-02-1502:59:00

PRIOn knowledge base

www.prio-n.com

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.9%

JSON

Cross-site scripting (XSS) vulnerability in Reference Data Management (RDM) in IBM InfoSphere Master Data Management 10.1, 11.0 before FP5, 11.3, 11.4, and 11.5 before FP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

CPENameOperatorVersion
infosphere_master_data_management_reference_data_managementeq10.1
infosphere_master_data_management_reference_data_managementeq11.4
infosphere_master_data_management_reference_data_managementeq11.5
infosphere_master_data_management_reference_data_managementeq11.3
infosphere_master_data_management_reference_data_managementeq11.0

Name	Operator	Version
infosphere_master_data_management_reference_data_management	eq	10.1
infosphere_master_data_management_reference_data_management	eq	11.4
infosphere_master_data_management_reference_data_management	eq	11.5
infosphere_master_data_management_reference_data_management	eq	11.3
infosphere_master_data_management_reference_data_management	eq	11.0

References

www-01.ibm.com/support/docview.wss?uid=swg21974981