IBM Engineering Requirements Management 9.7.2.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 251052.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2024-03-01T01:41:48.557Z
Updated: 2024-08-02T13:43:23.134Z
Reserved: 2023-03-16T21:05:56.575Z
Link: CVE-2023-28525
Vulnrichment
Updated: 2024-08-02T13:43:23.134Z
NVD
Status : Modified
Published: 2024-03-01T02:15:06.860
Modified: 2024-11-21T07:55:16.807
Link: CVE-2023-28525
Redhat
No data.