Multiple Cross-Site Scripting Vulnerabilities in IBM Atlas Suite
CVE-2014-0889

Currently unrated

Key Information:

Vendor: IBM
Status: Global Retention Policy And Schedule Management; Atlas Suite; Disposal And Governance Management For It; Atlas Ediscovery Process Management
Vendor: CVE Published:; 29 July 2014

Summary

The IBM Atlas Suite contains multiple vulnerabilities that enable remote attackers to execute arbitrary web scripts or HTML code through various unvalidated parameters. This poses a significant risk, as it can lead to unauthorized actions, information disclosure, or other security breaches within the affected applications. Users and administrators are encouraged to take appropriate measures to secure their systems against these types of attacks.

References

http://www-01.ibm.com/support/entdocview.wss?uid=swg21679081

x_refsource_CONFIRM

http://secunia.com/advisories/59681

third-party-advisoryx_refsource_SECUNIA

http://www.ibm.com/connections/blogs/PSIRT/entry/security...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 29, 2014
Vulnerability Reserved
Jan 6, 2014