2 matches found
Security Bulletin: Vulnerability in system log on IBM MQ Appliance WebGUI (CVE-2017-1591)
Summary A potential cross-site scripting vulnerability exists in the IBM MQ Appliance system log. IBM has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2017-1591 DESCRIPTION: IBM WebSphere DataPower Appliances 7.0.0 through 7.6 and IBM MQ Appliances are vulnerable to cross-site...
CVE-2017-1591
The CVE-2017-1591 issue is a cross-site scripting vulnerability in IBM WebSphere DataPower Appliances (7.0.0–7.6) and related IBM MQ Appliance/WebGUI components. The flaw allows embedding arbitrary JavaScript in the Web UI, potentially leading to credentials disclosure within a trusted session. R...