IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 250421.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Ibm |
|
| Linux |
|
Configuration 1 [-]
| AND |
|
No data.
References
History
Wed, 22 Jan 2025 19:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Ibm
Ibm sterling Partner Engagement Manager Linux Linux linux Kernel |
|
| CPEs | cpe:2.3:a:ibm:sterling_partner_engagement_manager:6.1.2:*:*:*:essentials:*:*:* cpe:2.3:a:ibm:sterling_partner_engagement_manager:6.1.2:*:*:*:standard:*:*:* cpe:2.3:a:ibm:sterling_partner_engagement_manager:6.2.0:*:*:*:essentials:*:*:* cpe:2.3:a:ibm:sterling_partner_engagement_manager:6.2.0:*:*:*:standard:*:*:* cpe:2.3:a:ibm:sterling_partner_engagement_manager:6.2.2:*:*:*:essentials:*:*:* cpe:2.3:a:ibm:sterling_partner_engagement_manager:6.2.2:*:*:*:standard:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
|
| Vendors & Products |
Ibm
Ibm sterling Partner Engagement Manager Linux Linux linux Kernel |
MITRE
Status: PUBLISHED
Assigner: ibm
Published:
Updated: 2024-08-02T20:22:53.663Z
Reserved: 2023-03-16T21:05:38.974Z
Link: CVE-2023-28517
Vulnrichment
Updated: 2024-08-02T13:43:22.600Z
NVD
Status : Analyzed
Published: 2024-03-13T10:15:06.790
Modified: 2025-01-22T18:40:49.833
Link: CVE-2023-28517
Redhat
No data.