IBM Tivoli Endpoint Manager (for Lifecycle/Power/Patch) Platform and Applications is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 123678.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm bigfix platform 9.5.5 |
||
ibm bigfix platform 9.2 |
||
ibm bigfix platform 9.2.1 |
||
ibm bigfix platform 9.2.6 |
||
ibm bigfix platform 9.5 |
||
ibm bigfix platform 9.2.2 |
||
ibm bigfix platform 9.2.3 |
||
ibm bigfix platform 9.2.4 |
||
ibm bigfix platform 9.2.5 |
||
ibm bigfix platform 9.1.3 |
||
ibm bigfix platform 9.1.4 |
||
ibm bigfix platform 9.1.5 |
||
ibm bigfix platform 9.1.6 |
||
ibm bigfix platform 9.5.6 |
||
ibm bigfix platform 9.2.0 |
||
ibm bigfix platform 9.2.7 |
||
ibm bigfix platform 9.1 |
||
ibm bigfix platform 9.1.7 |
Vulmon