Metrics
Affected Vendors & Products
Solution
For the 1.11.0 release, upgrade to Fix Pack version 1.11.0.2-C03 or later. For the 2.11.0 release, upgrade to Fix Pack version 2.11.0.4-C01 or later.
Workaround
No workaround given by the vendor.
Link | Providers |
---|---|
https://www.ibm.com/support/pages/node/7242263 |
![]() ![]() |
Fri, 15 Aug 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 15 Aug 2025 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | IBM TS4500 1.11.0.0-D00, 1.11.0.1-C00, 1.11.0.2-C00, and 1.10.00-F00 web GUI is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. | |
Title | IBM TS4500 cross-site scripting | |
First Time appeared |
Ibm
Ibm ts4500 |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:h:ibm:ts4500:-:*:*:*:*:*:*:* | |
Vendors & Products |
Ibm
Ibm ts4500 |
|
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: ibm
Published:
Updated: 2025-08-15T19:48:45.853Z
Reserved: 2025-04-15T21:16:13.891Z
Link: CVE-2025-36088

Updated: 2025-08-15T19:48:41.101Z

Status : Awaiting Analysis
Published: 2025-08-15T20:15:27.563
Modified: 2025-08-18T20:16:28.750
Link: CVE-2025-36088

No data.

No data.