Cross-Site Scripting Vulnerability in IBM InfoSphere Optim Data Growth
CVE-2013-2957

Currently unrated

Key Information:

Vendor
IBM
Status
Infosphere Optim Data Growth For Oracle E-business Suite
Vendor
CVE Published:
27 May 2013

Summary

The vulnerability exists in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite, allowing remote authenticated users to exploit the application through crafted URLs. This flaw can enable attackers to inject arbitrary web scripts or HTML content, potentially compromising user sessions, stealing sensitive data, or redirecting users to malicious sites. It is critical for users of affected versions to apply the necessary updates to mitigate the risks associated with this vulnerability.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21637444
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/83666
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.