Home Unlabelled IBM Security Bulletin: Cross-site scripting vulnerability in WebSphere Application Server affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2018-1643)

IBM Security Bulletin: Cross-site scripting vulnerability in WebSphere Application Server affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2018-1643)

By
Saturday, December 15, 2018
Read
Add Comment

Dec 15, 2018 9:00 am EST

Categorized: Medium Severity

Share this post:

There is a potential cross-site scripting vulnerability with the Installation Verification Tool of IBM WebSphere Application Server which affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center).

CVE(s): CVE-2018-1643

Affected product(s) and affected version(s):

Affected ProductAffected Versions
IBM Tivoli Storage Productivity Center5.2.0 – 5.2.7.1
IBM Spectrum Control5.2.8 – 5.2.13

The versions listed above apply to all licensed offerings of IBM Spectrum Control.

Note that 5.3 versions of IBM Spectrum Control are not affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10787515
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144588



from IBM Product Security Incident Response Team https://ift.tt/2LkVs4C
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us