CVE-2020-4298 - IBM Infosphere Information Server and IBM Infosphere Information Server On Cloud

Moderate 5.4

IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 176475.

Affected software

IBM Infosphere Information Server

IBM Infosphere Information Server On Cloud

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.