Cross-Site Scripting Vulnerability in IBM Intelligent Operations Center
CVE-2012-6360

Currently unrated

Key Information:

Vendor: IBM
Status: Intelligent Operations Center
Vendor: CVE Published:; 18 January 2013

Summary

A cross-site scripting (XSS) vulnerability exists in IBM Intelligent Operations Center 1.5.0, enabling remote attackers to exploit the system by injecting arbitrary web scripts or HTML through event data fields. This could lead to unauthorized actions on behalf of users, potentially compromising sensitive information and user sessions.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PO00211

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/80942

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21622222

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 18, 2013
Vulnerability Reserved
Dec 16, 2012