XSS Vulnerability in IBM InfoSphere Enterprise Records by IBM
CVE-2013-6314

Currently unrated

Key Information:

Vendor: IBM
Status: Enterprise Records; Infosphere Enterprise Records
Vendor: CVE Published:; 6 March 2014

Summary

A cross-site scripting (XSS) vulnerability exists in IBM InfoSphere Enterprise Records versions prior to 4.5.1.7-IER-IF001 and 5.1.1.1-IER-IF003. This flaw allows remote authenticated users to inject arbitrary web scripts or HTML through unspecified vectors, posing significant security risks. Organizations utilizing these versions are urged to implement updates to mitigate potential exploitation.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/88595

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/65922

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg21662911

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 6, 2014
Vulnerability Reserved
Oct 31, 2013