Vulnerability Details CVE-2012-0715
Cross-site scripting (XSS) vulnerability in the Gantt applet viewer in IBM Tivoli Change and Configuration Management Database (CCMDB) 7.2.1 and IBM ILOG JViews Gantt allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://www-01.ibm.com/support/docview.wss?crawler=1&uid=swg1IV16174
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV16174
- https://exchange.xforce.ibmcloud.com/vulnerabilities/73587
- http://www-01.ibm.com/support/docview.wss?crawler=1&uid=swg1IV16174
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV16174
- https://exchange.xforce.ibmcloud.com/vulnerabilities/73587
Products affected by CVE-2012-0715
-
cpe:2.3:a:ibm:ilog_jviews_gantt:-
-
cpe:2.3:a:ibm:tivoli_change_and_configuration_management_database:7.2.1