2 matches found
Security Bulletin: IBM OpenPages GRC Platform has addressed secure HTTP header improvements (CVE-2017-1290)
Summary IBM OpenPages GRC Platform has addressed potential security exposure due to some missing secure HTTP headers Vulnerability Details CVEID: CVE-2017-1290 DESCRIPTION: IBM OpenPages GRC Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary...
CVE-2017-1290
IBM OpenPages GRC Platform versions 7.1–7.3 are reported vulnerable to cross-site scripting, allowing an attacker to inject JavaScript into the Web UI. The issue affects OpenPages GRC Platform 7.1, 7.2, and 7.3 as described in IBM’s bulletin. Remediation is provided via versioned fixes: 7.3.0.1 o...