Cross-site Scripting Vulnerabilities in IBM WebSphere Service Registry and Repository
CVE-2014-6188

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Service Registry And Repository
Vendor: CVE Published:; 24 December 2014

What is CVE-2014-6188?

Multiple cross-site scripting (XSS) vulnerabilities exist in IBM WebSphere Service Registry and Repository, affecting various versions. These vulnerabilities allow remote authenticated users to inject arbitrary web scripts or HTML through various unspecified vectors, posing a potential risk to the application’s integrity and user data.

References

http://www.ibm.com/support/docview.wss?uid=swg21693384

x_refsource_CONFIRM

http://www.ibm.com/support/docview.wss?uid=swg21693379

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/98553

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 24, 2014
Vulnerability Reserved
Sep 2, 2014