2 matches found
CVE-2019-4226
IBM Cloud Pak System 2.3 and 2.3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 159243...
CVE-2019-4226
Affected product: IBM Cloud Pak System 2.3 and 2.3.0.1. Vulnerability: Cross-site scripting in the Web UI that can inject arbitrary JavaScript, potentially leading to credentials disclosure within a trusted session. Impact (as stated): manipulation of UI and credential exposure; CVSS v3.0 base sc...