CVE-2020-4575

State: PUBLISHED · Published: 2020-08-27 · Updated: 2024-09-16 · Assigner: ibm

Description

IBM WebSphere Application Server ND 8.5 and 9.0, and IBM WebSphere Virtual Enterprise 7.0 and 8.0 are vulnerable to cross-site scripting when High Availability Deployment Manager is configured.

CWE

(none)

Affected

IBM / WebSphere Virtual Enterprise — v=7.0 [affected]; v=8.0 [affected]
IBM / WebSphere Application Server ND — v=8.5 [affected]; v=9.0 [affected]

CVSS

3.0 score=4.7 severity=MEDIUM CVSS:3.0/S:C/I:L/A:N/C:L/AV:N/PR:N/UI:R/AC:H/RC:C/RL:O/E:H

References

https://www.ibm.com/support/pages/node/6323293 x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/184363 vdb-entry, x_refsource_XF

Source

cvelistV5-main/cves/2020/4xxx/CVE-2020-4575.json