XSS Vulnerability in IBM Security AppScan Products
CVE-2014-6121

Currently unrated

Key Information:

Vendor: IBM
Status: Security Appscan; Security Appscan Source
Vendor: CVE Published:; 23 December 2014

Summary

The vulnerability allows remote authenticated users to inject arbitrary web scripts or HTML through a specially crafted URL. This could compromise the integrity of web applications that utilize affected versions of IBM Security AppScan, leading to potential unauthorized actions or data leakage. Appropriate safeguards and updates are necessary to mitigate this risk.

References

http://www.securitytracker.com/id/1031427

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21693035

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/96722

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 23, 2014
Vulnerability Reserved
Sep 2, 2014