Cross-Site Scripting Vulnerability in IBM Curam Social Program Management
CVE-2021-39068
5.4MEDIUM
What is CVE-2021-39068?
IBM Curam Social Program Management versions 8.0.1 and 7.0.11 contain a cross-site scripting vulnerability that permits attackers to inject arbitrary JavaScript code into the web interface. This may lead to the manipulation of user sessions, potentially exposing sensitive information such as credentials within trusted environments. Users and organizations relying on these versions should act promptly to mitigate this vulnerability to safeguard against potential exploitation.
Affected Version(s)
Curam Social Program Management 7.0.11
Curam Social Program Management 8.0.1