IBM Security Bulletin: Cross-site scripting vulnerability in IBM Business Process Manager (BPM) Process Inspector (CVE-2014-6173)
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
Insufficient user input validation in IBM Business Process Managers Process Inspector can lead to a cross-site scripting exposure. CVE(s): CVE-2014-6173 Affected product(s) and affected version(s): IBM Business Process Manager Standard V8.0.x 8.5.x IBM Business Process Manager Express V8.0.x 8.5.x IBM Business Process Manager Advanced V8.0.x 8.5.x Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_cross_site_scripting_vulnerability_in_ibm_business_process_manager_bpm_process_inspector_cve_2014_6173?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-6173 ,CVE-2014-3566 ,CVE-2014-4844 ,CVE-2014-3508 ,CVE-2014-3509 ,CVE-2014-3505 ,CVE-2014-3506 ,CVE-2014-3507 ,CVE-2014-3510 and CVE-2014-3511. |