Cross-Site Scripting Vulnerability in IBM Cognos TM1 Web Component
CVE-2012-6350

Currently unrated

Key Information:

Vendor: IBM
Status: Cognos Tm1
Vendor: CVE Published:; 31 January 2013

What is CVE-2012-6350?

A vulnerability exists in the Web component of IBM Cognos TM1 that allows remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. This flaw can lead to deceptive alterations of web content, potentially compromising user interactions and sensitive information.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21621782

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/80670

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 31, 2013
Vulnerability Reserved
Dec 16, 2012