Cross-Site Scripting Vulnerabilities in IBM Tivoli Integrated Portal
CVE-2014-6152

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Integrated Portal
Vendor: CVE Published:; 25 October 2014

Summary

IBM Tivoli Integrated Portal (TIP) 2.2.x contains multiple vulnerabilities that allow remote authenticated users to perform Cross-Site Scripting (XSS) attacks. These vulnerabilities can be exploited to inject arbitrary web scripts or HTML into web pages viewed by other users, potentially compromising user data and web application security. Proper validation and sanitation of user inputs are critical to mitigating these risks. Affected users are advised to apply necessary security patches and updates to protect against potential exploitation.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21687541

x_refsource_CONFIRM

http://secunia.com/advisories/61899

third-party-advisoryx_refsource_SECUNIA

http://www-01.ibm.com/support/docview.wss?uid=swg1PI27417

vendor-advisoryx_refsource_AIXAPAR

Timeline

Vulnerability published
Oct 25, 2014
Vulnerability Reserved
Sep 2, 2014