Cross-Site Scripting Vulnerability in IBM WebSphere Service Registry and Repository
CVE-2014-6179

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Service Registry And Repository
Vendor: CVE Published:; 24 December 2014

Summary

This vulnerability allows remote attackers to exploit the Web UI of IBM WebSphere Service Registry and Repository, potentially injecting arbitrary web scripts or HTML. The flaw affects specific versions of the software, creating an opportunity for exploitation through unspecified vectors, which can lead to unauthorized data exposure or malicious actions within user sessions.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IV51859

vendor-advisoryx_refsource_AIXAPAR

http://www.ibm.com/support/docview.wss?uid=swg21693384

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/98516

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 24, 2014
Vulnerability Reserved
Sep 2, 2014