4.3
CVSSv2

CVE-2019-4681

Published: 24/03/2020 Updated: 25/03/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

IBM Tivoli Netcool Impact 7.1.0.0 up to and including 7.1.0.17 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 171734.

Vulnerability Trend

Affected Products

Vendor Product Versions
IbmTivoli Netcool/impact7.1.0.0, 7.1.0.1, 7.1.0.2, 7.1.0.3, 7.1.0.4, 7.1.0.5, 7.1.0.6, 7.1.0.7, 7.1.0.8, 7.1.0.9, 7.1.0.10, 7.1.0.11, 7.1.0.12, 7.1.0.13, 7.1.0.14, 7.1.0.15, 7.1.0.16, 7.1.0.17