CVE-2015-1979

Currently unrated

Key Information:

Vendor: IBM
Status: Case Manager
Vendor: CVE Published:; 20 July 2015

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1 before 5.2.1.2 allow remote authenticated users to inject arbitrary web script or HTML via crafted input to the (1) addressability or (2) comments component.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21959695

x_refsource_CONFIRM

http://www.securityfocus.com/bid/75538

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jul 20, 2015
Vulnerability Reserved
Feb 19, 2015