CVE-2020-4910
IBM Cloud Pak System 2.3 is vulnerable to cross-site scripting in the Web UI, allowing an attacker to embed arbitrary JavaScript and potentially disclose credentials within a trusted session. Affected product/version: IBM Cloud Pak System 2.3. Remediation: upgrade to Cloud Pak System v2.3.3.3 (pe...