Cross-Site Scripting Vulnerability in IBM Rational Asset Manager
CVE-2011-4708

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Asset Manager
Vendor: CVE Published:; 8 December 2011

Summary

A cross-site scripting (XSS) vulnerability exists in IBM Rational Asset Manager versions prior to 7.5.1, allowing remote attackers to inject arbitrary web scripts or HTML into web pages viewed by other users. This security flaw can lead to unauthorized data access, session hijacking, or defacement of web content, jeopardizing the integrity and confidentiality of the affected applications.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PM38467

vendor-advisoryx_refsource_AIXAPAR

http://www.securitytracker.com/id?1026285

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 8, 2011