XSS in Ibm Security_access_manager_for_enterprise_single_sign-on
CVE-2013-5421
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote attackers to inject arbitrary web script or HTML via crafted input to an un…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.002 (46.7th percentile) — read the EPSS interpretation.
Affected products
- Ibm Security_access_manager_for_enterprise_single_sign-on — versions 8.2
- N/a — versions n/a
Weakness classification (CWE)
References
- ibm-sam-cve20135421-xss(87483) (vdb-entry, x_refsource_XF)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)