XSS in Ibm Tivoli_application_dependency_discovery_manager
CVE-2014-6150
Cross-site scripting (XSS) vulnerability in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1.0 through 7.2.1.6 and 7.2.2.0 through 7.2.2.2 allows remote authenticated users to inject arbitrary web script or HTML via a craf…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.002 (40.5th percentile) — read the EPSS interpretation.
Affected products
- Ibm Tivoli_application_dependency_discovery_manager — versions 7.2.1, 7.2.1.1, 7.2.1.2
- N/a — versions n/a
Weakness classification (CWE)
References
- 61785 (x_refsource_SECUNIA, third-party-advisory)
- psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- ibm-taddm-cve20146150-xss(96920) (vdb-entry, x_refsource_XF)