Cross-Site Scripting Vulnerability in IBM Initiate Master Data Service
CVE-2014-4787

Currently unrated

Key Information:

Vendor
IBM
Status
Initiate Master Data Service
Vendor
CVE Published:
10 September 2014

Summary

A cross-site scripting (XSS) vulnerability exists in IBM Initiate Master Data Service, allowing remote authenticated users to inject arbitrary web scripts or HTML. This can occur through unspecified vectors, potentially compromising the security of the affected system. It is crucial for users of affected versions (ranging from 9.5 to 10.1) to apply the necessary patches to mitigate this risk.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21682450
x_refsource_CONFIRM
http://secunia.com/advisories/60996
third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/95034
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.