XSS in Ibm Tivoli_federated_identity_manager

CVE-2013-0582

Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.12, 6.2.1 before 6.2.1.5, and 6.2.2 before 6.2.2.4 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.003 (49.3th percentile) — read the EPSS interpretation.

Affected products

Ibm Tivoli_federated_identity_manager — versions 6.2.0, 6.2.0.1, 6.2.0.2
Ibm Tivoli_federated_identity_manager_business_gateway — versions 6.2.0, 6.2.0.1, 6.2.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

References

IV26033 (vendor-advisory, x_refsource_AIXAPAR)
psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
IV26034 (vendor-advisory, x_refsource_AIXAPAR)
IV31640 (vendor-advisory, x_refsource_AIXAPAR)