Cross-Site Scripting Vulnerability in IBM Power Hardware Management Console
CVE-2012-3296

Currently unrated

Key Information:

Vendor
IBM
Status
Power Hardware Management Console
Vendor
CVE Published:
17 August 2012

Summary

A Cross-Site Scripting vulnerability exists in the Help link on the login panel of IBM's Power Hardware Management Console. This vulnerability impacts multiple versions, allowing remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. Users are advised to apply the necessary updates to mitigate potential security risks.

References

http://www.ibm.com/support/fixcentral/firmware/readme?fix...
x_refsource_CONFIRM
http://www.ibm.com/support/fixcentral/firmware/readme?fix...
x_refsource_CONFIRM
http://www.ibm.com/connections/blogs/PSIRT/entry/security...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.