Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Security vulnerabilities related to Cross-site scripting identified in Dashboard Application Services Hub (CVE-2014-6151, CVE-2014-6152) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
Dashboard Application Services Hub, a service within the Jazz™ for Service Management component, has a Cross-site scripting security vulnerability in some of its URLs. CVE(s): CVE-2014-6151 and CVE-2014-6152 Affected product(s) and affected version(s): Jazz for Service Management Version 1.1 and subsequent fix packs Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg21689235 More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_security_vulnerabilities_related_to_cross_site_scripting_identified_in_dashboard_application_services_hub_cve_2014_6151_cve_2014_6152?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-6151 ,CVE-2014-6152 ,CVE-2014-0076 ,CVE-2014-4263 and CVE-2014-4244. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-11-07 |