3 matches found
Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities
Summary IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities including those in Node.js, IBM WebSphere Application Server Liberty and various other libraries. Vulnerability Details CVEID:CVE-2022-24839 DESCRIPTION: Sparkle Motion Nokogiri is vulnerable to a denial of...
CVE-2022-41299
IBM Cloud Transformation Advisor versions 2.0.1–3.3.1 are affected by a cross-site scripting vulnerability that enables embedding arbitrary JavaScript in the Web UI, potentially leading to credentials disclosure within a trusted session. The vulnerability is documented as CVE-2022-41299 with an a...
CVE-2022-41299 IBM Cloud Transformation Advisor cross-site scripting
IBM Cloud Transformation Advisor 2.0.1 through 3.3.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...