Cross-site Scripting Vulnerability in IBM Algo One and Related Products
CVE-2013-6318

Currently unrated

Key Information:

Vendor: IBM
Status: Algo One
Vendor: CVE Published:; 5 March 2014

Summary

A cross-site scripting (XSS) vulnerability exists in IBM Algo One, affecting versions 4.7.0 through 5.0.0 of UDS, and versions 4.7.0 through 4.9.0 of ACSWeb within Algo Security Access Control Management, as well as ACSWeb in AlgoWebApps 5.0.0. This vulnerability allows remote attackers to inject arbitrary web scripts or HTML into affected applications, potentially compromising the integrity and confidentiality of sensitive data.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/88599

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21666110

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 5, 2014
Vulnerability Reserved
Oct 31, 2013