IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 204340.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2021-09-23T18:05:42.128283Z
Updated: 2024-09-16T20:06:46.196Z
Reserved: 2021-03-31T00:00:00
Link: CVE-2021-29815
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-09-23T18:15:11.143
Modified: 2024-11-21T06:01:51.750
Link: CVE-2021-29815
Redhat
No data.