Cross-site Scripting Vulnerability in IBM WebSphere eXtreme Scale

CVE-2013-5390

Summary

A cross-site scripting vulnerability exists in the monitoring console of IBM WebSphere eXtreme Scale versions 7.1.0, 7.1.1, 8.5.0, and 8.6.0. This vulnerability allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, potentially compromising the integrity of user sessions and data confidentiality. Organizations utilizing these affected versions should apply recommended patches and security measures to mitigate risks associated with this vulnerability.

References