Cross-Site Scripting Vulnerability in IBM InfoSphere Products
CVE-2012-4819

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Information Server; Infosphere Business Glossary
Vendor: CVE Published:; 31 January 2013

Summary

An XSS vulnerability exists in multiple components of IBM InfoSphere Information Server, including the Business Glossary and DataStage Operation Console. This flaw allows remote attackers to inject malicious web scripts or HTML into the application through unspecified vectors, potentially compromising user data and application integrity.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/78666

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 31, 2013
Vulnerability Reserved
Sep 6, 2012