Security Bulletin: Atlas Suite/Atlas Policy Suite Cross-site Scripting Vulnerabilities (CVE-2014-0889)
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
Multiple cross-site scripting (XSS) vulnerabilities exist due to insufficient input validation of URL parameters. CVE(s): CVE-2014-0889 Affected product(s) and affected version(s): IBM Atlas eDiscovery Process Management 6.0.1.6 and earlier, 6.0.2, 6.0.3 IBM Disposal and Governance Management for IT 6.0.1.6 and earlier, 6.0.2, 6.0.3 IBM Global Retention Policy and Schedule Management 6.0.1.6 and earlier, 6.0.2, 6.0.3 Refer to the following reference URLs for remediation and additional
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_atlas_suite_atlas_policy_suite_cross_site_scripting_vulnerabilities_cve_2014_0889?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-0889 ,CVE-2014-3050 ,CVE-2014-3026 ,CVE-2014-0915 and CVE-2013-5879. |