IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 249327.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/249327 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6983460 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2023-04-28T17:01:04.242Z
Updated: 2023-04-28T17:01:04.242Z
Reserved: 2023-03-06T20:01:41.708Z
Link: CVE-2023-27864
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-28T18:15:26.323
Modified: 2023-05-09T13:46:22.443
Link: CVE-2023-27864
JSON object: View
Redhat Information
No data.
CWE