Home Unlabelled Security Bulletin: A vulnerability has been identified in IBM Spectrum Scale which allows users to embed arbitrary JavaScript code in the Web UI (CVE-2019-4665)

Security Bulletin: A vulnerability has been identified in IBM Spectrum Scale which allows users to embed arbitrary JavaScript code in the Web UI (CVE-2019-4665)

By
Tuesday, December 10, 2019
Read
Add Comment

A security vulnerability has been identified in all levels of IBM Spectrum Scale that could allow users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. A fix for this vulnerability is available.

Affected product(s) and affected version(s):

Affected Product(s)Version(s)
IBM Spectrum Scale5.0.0.0 – 5.0.4.0
IBM Spectrum Scale4.2.0.0 – 4.2.3.18

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1118937

The post Security Bulletin: A vulnerability has been identified in IBM Spectrum Scale which allows users to embed arbitrary JavaScript code in the Web UI (CVE-2019-4665) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2PyVwjO
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us