Ibm: >> Jazz For Service Management >> 1.1.2.1 Security Vulnerabilities
IBM Jazz for Service Management is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 231381.
CVSS Score
6.4
EPSS Score
0.001
Published
2022-09-28
IBM Jazz for Service Management 1.1.2.1 and 1.1.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference #: 1998714.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-02-24