Cross-Site Scripting Flaw in IBM Tivoli Common Reporting Products
CVE-2015-1969

Currently unrated

Key Information:

Vendor
IBM
Vendor
CVE Published:
4 October 2015

Summary

A cross-site scripting (XSS) vulnerability exists in various versions of IBM Tivoli Common Reporting. This flaw allows remote authenticated users to inject arbitrary web scripts or HTML into affected systems via a specially crafted URL. This can potentially lead to session hijacking, data theft, or other malicious actions, posing a risk to the integrity and security of applications reliant on this reporting tool. Users of these affected products should take immediate action to patch their systems.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.