IBM Engineering Test Management 7.0.2 and 7.0.3 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 267459.
Metrics
Affected Vendors & Products
References
History
Mon, 23 Dec 2024 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ibm
Ibm engineering Test Management |
|
CPEs | cpe:2.3:a:ibm:engineering_test_management:7.0.2:*:*:*:*:*:*:* cpe:2.3:a:ibm:engineering_test_management:7.0.3:*:*:*:*:*:*:* |
|
Vendors & Products |
Ibm
Ibm engineering Test Management |
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2024-03-03T12:15:07.703Z
Updated: 2024-08-02T19:37:23.119Z
Reserved: 2023-09-15T01:12:28.345Z
Link: CVE-2023-43054
Vulnrichment
Updated: 2024-08-02T19:37:23.119Z
NVD
Status : Analyzed
Published: 2024-03-03T13:15:06.880
Modified: 2024-12-23T17:29:02.930
Link: CVE-2023-43054
Redhat
No data.