Cross-site Scripting Vulnerability in IBM Tivoli Storage Manager Products
CVE-2015-1988

Currently unrated

Key Information:

Vendor
IBM
Status
Tivoli Storage Flashcopy Manager
Vendor
CVE Published:
4 October 2015

Summary

The vulnerability allows remote authenticated users to inject arbitrary web scripts or HTML through a specially crafted URL. This affects multiple versions of IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware and Tivoli Storage FlashCopy Manager for VMware, potentially compromising web security and user data integrity.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21967532
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.