Cross-Site Scripting Vulnerability in IBM FileNet Workplace
CVE-2016-3054
5.4MEDIUM
Summary
The vulnerability in IBM FileNet Workplace 4.0.2 allows remote authenticated users to exploit the application by uploading malicious files that can inject arbitrary web scripts or HTML. This could lead to unauthorized actions being executed in the context of another user's session, compromising data integrity and user trust. It is crucial for organizations using this software to implement appropriate security measures to mitigate the impact of this vulnerability.
References
CVSS V3.1
Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved